More than 33 million people are affected by the theft of data from third-party payer managers for complementary health insurance.
Two operators notified the National Commission for Information Technology and Liberties (Cnil).
Viamedis, which manages third-party payment for 84 supplementary health insurance plans, or 20 million people with social insurance, announced this last Thursday.
The CNIL announced this Wednesday that Almerys had informed it that it had also been the victim of a cyberattack.
It manages the complementary health insurance files of 13 million people.
“The data concerned are, for policyholders and their families, marital status, date of birth and social security number, the name of the health insurer as well as the guarantees of the contract subscribed.
Data such as banking information, medical data, health reimbursements, postal details, telephone numbers or even emails would not be affected by the violation,” indicates the CNIL.
It is up to the complementary health insurance companies using Viamedis and Almerys providers to inform individually and directly all the people concerned as provided for in the general data protection regulation (GDPR), explains the commission.
The president of the CNIL decided to carry out investigations very quickly
Check your accounts
If you are concerned, the CNIL advises you
to be careful about the requests you may receive, particularly if they concern reimbursement of health costs
and regularly check the movements on your various accounts.
Although contact data is not affected by the breach, it is possible that the breached data could be combined with other information from previous data breaches.