Cordant to Notify Individuals of Data Security Incident

On or about February 21, 2022, Sterling Healthcare Holdings, LLC DBA Cordant Health Solutions (“Cordant”) became aware of a compromise to a Cordant employee’s email account, which may have resulted in the inadvertent exposure of personal and medical information. Cordant has worked diligently to determine exactly what happened and what information was involved as a result of this incident.

Cordant immediately commenced a third-party forensic investigation and has determined the incident was limited to one (1) Cordant email user account. The emails located in the compromised mailbox may have contained personal and medical information. Cordant is in the process of manually reviewing those emails to identify those individuals whose sensitive information was contained therein. Cordant will be sending individual notification letters in the coming weeks and will offer complimentary credit monitoring to those individuals whose social security number, financial account and/or payment card information was potentially compromised. As of this writing, Cordant has not received any reports of related misuse, identity theft or fraud since the date of the incident.

Cordant is committed to ensuring the security of all information within its control, and is taking steps to prevent a similar event from occurring in the future. This includes the strengthening of our cybersecurity posture by performing additional hardening of our network, platforms, and software to prevent the future occurrence of any similar data security incidents. Cordant sincerely regrets any inconvenience or concern that this matter may cause, and remains dedicated to ensuring the privacy and security of all information in our control.

Individuals may call 833-423-2980 with any questions, Monday through Friday from 9:00 a.m. to 5:00 p.m. MST.