Ironically, our family data was compromised and we are not even health care customers of either Medical Excess or AIG – our only connection with them is thru a retirement account administered by VALIC. Somehow VALIC shared data with AIG who shared data with Medical Excess – all without permission – so much for \”protecting\” data. It\’s amazing how easily and amorally businesses turn our personal, financial, medical lives into commodities to be bought, traded and stolen. Our rights as customers and citizens are trampled by those who believe themselves to be higher and mightier daily. They are thieves of the first order, without conscience or restraint. History will show that the Soviets were sneakier but probably less dangerous than unscrupulous \”business\”men. Be sure to check out the movie \”Fun With Dick And Jane\” for an Enronesque experience.
You have got to be kidding me…when are these idiots going to learn that they just cannot do this???????
Now everyone has to waste their time pulling credit reports, putting fraud alerts on their credit reports, and having to watch every little thing they get in the mail or what shows on their accounts. Sure, if you access accounts online like some people do they can check them every day…some people don\’t have that luxury.
If they got this information like this, how many other companies have our information and we don\’t even know it??? And why would anyone need to provide SSN numbers for this stuff when plan administrators use different ID numbers to verify who you are?????? This is utterly repulsive.
On top of that, if this server was supposedly in some secured room, either it was an inside job or someone in that stupid company gave away the codes to some crook outside of the company, so either way it was probably was an inside job…nice security measure there Medical Excess…what a joke…thanks for wasting everyones time and money AIG. AIG doesn\’t even know what information was even on that server since the letter said that \”your social security number and date of birth MAY have been on the database\”…those stupid idiots don\’t even know what was even on that thing, yet they claim they take security measures on it? They probably didn\’t even know what was on the damn thing…….on top of that, this happened back in MARCH?!?!?!?!?!?!!?!? Like they couldn\’t have sent a letter in March without leaking this to the public…who knows what could happen to your credit report in 3 months…..
So, thanks for nothing Medical Excess/AIG and all of the other idiot companies who pull this stuff and get away with it….shouldn\’t everyone had learned from the ChoicePoint debacle????????
You\’d think since they just compromised the personal information of almost a million people they\’d have some reference to the matter on their website.
AIG represents the worst of this industry, from top to bottom a rotten apple that attracts immoral business people and whose leadership expects their employees to push the ethical envelope every day, every minute. This is the heart of their competitive advantage. While this is not the only company devoid of a moral compass, it has repeatedly moved the ethical bar lower and lower under the guise of returning greater and greater to it\’s shareholders.
I\’m among the last to suggest that we need a legislative solution to this increasing problem of ID theft, but enough IS enough. There must be a grass roots effort somewhere in need of another 930,000 constituents?
Surely there is a lawyer hungry enough in a jurisdiction favorable to consumers who will take this on?
I live in Indianapolis and found the Indianapolis office number to call. The lady was very nice but not helpful. Apparently, she has been instructed to not talk about the issue other than to direct people to the 877 number on the back of the letter.
She also noted that they have not been told anything concerning the issue also.
This is an example of bad management. Management should be taking a leadership position in communicating their willingness to help and be responsive. Instead, we are lead to a phone number that is not answered.
This company sucks.
Anyone know if it is a public company? Anyone know the name of the CEO?
I called the 800 number I found on their website this morning. I asked to find out who gave them my information. The women I spoke to told me she did not have that information, but would pass the message along, and someone would call me back.
She tried to tell me that it was through a census broker or my employer, I do the insurance for the company I work for, and I did not give anyone permission to give it to this company. It was only after that that she said someone would call me back.
There\’s no reason to believe that the computers weren\’t password protected. Most OS\’s newer than Windows95 make it easy to do password protection (every computer I\’ve used at work since 1999 had password protection).
On the other hand password protection doesn\’t mean squat unless the data was encrypted (most of the time you just need to boot the computer from a floppy or CD).
I could be wrong, but there may not have been a HIPAA violation here.
Providers and insurance companies can hire third parties to do work (write and manage software, print bills, etc) as long as those third parties only get info that they need and obey HIPAA themselves.
We have updated our privacy policy to be more clear and meet the new requirements of the GDPR. By continuing to use our site, you accept our revised Privacy Policy.
Ironically, our family data was compromised and we are not even health care customers of either Medical Excess or AIG – our only connection with them is thru a retirement account administered by VALIC. Somehow VALIC shared data with AIG who shared data with Medical Excess – all without permission – so much for \”protecting\” data. It\’s amazing how easily and amorally businesses turn our personal, financial, medical lives into commodities to be bought, traded and stolen. Our rights as customers and citizens are trampled by those who believe themselves to be higher and mightier daily. They are thieves of the first order, without conscience or restraint. History will show that the Soviets were sneakier but probably less dangerous than unscrupulous \”business\”men. Be sure to check out the movie \”Fun With Dick And Jane\” for an Enronesque experience.
You have got to be kidding me…when are these idiots going to learn that they just cannot do this???????
Now everyone has to waste their time pulling credit reports, putting fraud alerts on their credit reports, and having to watch every little thing they get in the mail or what shows on their accounts. Sure, if you access accounts online like some people do they can check them every day…some people don\’t have that luxury.
If they got this information like this, how many other companies have our information and we don\’t even know it??? And why would anyone need to provide SSN numbers for this stuff when plan administrators use different ID numbers to verify who you are?????? This is utterly repulsive.
On top of that, if this server was supposedly in some secured room, either it was an inside job or someone in that stupid company gave away the codes to some crook outside of the company, so either way it was probably was an inside job…nice security measure there Medical Excess…what a joke…thanks for wasting everyones time and money AIG. AIG doesn\’t even know what information was even on that server since the letter said that \”your social security number and date of birth MAY have been on the database\”…those stupid idiots don\’t even know what was even on that thing, yet they claim they take security measures on it? They probably didn\’t even know what was on the damn thing…….on top of that, this happened back in MARCH?!?!?!?!?!?!!?!? Like they couldn\’t have sent a letter in March without leaking this to the public…who knows what could happen to your credit report in 3 months…..
So, thanks for nothing Medical Excess/AIG and all of the other idiot companies who pull this stuff and get away with it….shouldn\’t everyone had learned from the ChoicePoint debacle????????
You\’d think since they just compromised the personal information of almost a million people they\’d have some reference to the matter on their website.
Not these people.
AIG represents the worst of this industry, from top to bottom a rotten apple that attracts immoral business people and whose leadership expects their employees to push the ethical envelope every day, every minute. This is the heart of their competitive advantage. While this is not the only company devoid of a moral compass, it has repeatedly moved the ethical bar lower and lower under the guise of returning greater and greater to it\’s shareholders.
I\’m among the last to suggest that we need a legislative solution to this increasing problem of ID theft, but enough IS enough. There must be a grass roots effort somewhere in need of another 930,000 constituents?
Surely there is a lawyer hungry enough in a jurisdiction favorable to consumers who will take this on?
I live in Indianapolis and found the Indianapolis office number to call. The lady was very nice but not helpful. Apparently, she has been instructed to not talk about the issue other than to direct people to the 877 number on the back of the letter.
She also noted that they have not been told anything concerning the issue also.
This is an example of bad management. Management should be taking a leadership position in communicating their willingness to help and be responsive. Instead, we are lead to a phone number that is not answered.
This company sucks.
Anyone know if it is a public company? Anyone know the name of the CEO?
I called the 800 number I found on their website this morning. I asked to find out who gave them my information. The women I spoke to told me she did not have that information, but would pass the message along, and someone would call me back.
She tried to tell me that it was through a census broker or my employer, I do the insurance for the company I work for, and I did not give anyone permission to give it to this company. It was only after that that she said someone would call me back.
Yes, they are a public company, trading under AIG on the NYSE.
Martin J. Sullivan
President and Chief Executive Officer
American International Group, Inc.
There\’s no reason to believe that the computers weren\’t password protected. Most OS\’s newer than Windows95 make it easy to do password protection (every computer I\’ve used at work since 1999 had password protection).
On the other hand password protection doesn\’t mean squat unless the data was encrypted (most of the time you just need to boot the computer from a floppy or CD).
I could be wrong, but there may not have been a HIPAA violation here.
Providers and insurance companies can hire third parties to do work (write and manage software, print bills, etc) as long as those third parties only get info that they need and obey HIPAA themselves.
If anyone needs a laugh (unfortunately at our expense) check out this link.
http://www.aigidtheft.com/