A A A

OASIS AT 30TH

Affordable Assisted Lifestyle Community 

Data Breach

NOTICE OF DATA SECURITY INCIDENT

Oasis at 30th is managed and operated by Gardant Management Solutions (“Gardant”). Gardant experienced a data security incident that resulted in the potential access and/or acquisition to some of Oasis at 30th residents’ personal and medical information. While Gardant has no evidence that anyone’s information was actually viewed or acquired, and no evidence of any fraud or identify theft, Gardant has mailed notification letters to impacted residents for whom it had a valid mailing address. That notice includes information on steps individuals can take to protect themselves against potential fraud or identity theft.

Gardant discovered that on February 11, 2019, it was the victim of a cyber-phishing attack that resulted in an unauthorized third party potentially being able to view the contents of an employee’s email account. Upon learning of the incident Gardant began an internal investigation. Gardant also retained a leading forensic security firm to conduct a comprehensive search for any personal information in the impacted email account and confirm the security of its email and computer systems. Gardant also notified law enforcement. On August 6, 2019, the investigation indicated that the data impacted by the incident may have included resident names, addresses, dates of birth, Social Security numbers, medical information and billing information.

Gardant previously sent notification letters to individuals who it had addresses for, but has recently been able to identify additional addresses and sent out additional notification on March 18, 2020. Individuals whose Social Security numbers may have been impacted received an offer for free identity theft protection services.

Gardant encourages its residents to remain vigilant to the possibility of fraud and identity theft by reviewing credit card, bank, and other financial statements, as well as claims made using their insurance for any unauthorized activity. If individuals detect any suspicious activity, they should notify the entity with which the account is maintained, and promptly report the suspicious activity to appropriate law enforcement authorities, including the police and their state attorney general. In addition, anyone looking for information on fraud prevention can review tips provided by the FTC at www.ftc.gov/idtheft.

Gardant takes the security of its residents’ information very seriously and sincerely apologizes for any inconvenience this incident may cause any of its residents. If you have any questions or concerns about this incident, please contact 1-855-963-0396, Monday through Friday, 9:00 a.m. to 9:00 p.m. Eastern Time.