York County officials have alerted residents to a potential data privacy breach regarding sensitive information that may have been improperly retained by a software vendor's employee. The county was informed in early 2025 about the incident and indicated that the employee was given access to private data for software development purposes. Although no evidence of misuse has been found, the types of compromised information include Social Security numbers and health data. The county has referred the case to law enforcement for further investigation.
Although the county's press release states there is no evidence of misuse, the types of information involved includes contact information, Social Security numbers, driver's license or state ID card numbers, financial and medical information.
County officials shared that "in early 2025, the county was notified of a possible data security incident" involving a vendor working with them.
The employee subsequently left the vendor's employment without returning this data," the press release read.
The software vendor was not named, and there was no explanation of why real data was being used for development or testing.
Collection
[
|
...
]