Sens. Harding and Hwang on Exchange Audit: Mishandling of Client Data Breaches is “unacceptable”

May 15, 2024

Senate Republican Leader Stephen Harding and Insurance and Real Estate Committee Ranking Senator Tony Hwang issued the following statement regarding the state audit of the Connecticut Health Insurance Exchange which revealed the mishandling of client data breaches. The report found that three data breaches were not reported to the Auditors of Public Accounts, and that the Exchange did not take sufficient action to ensure the confidentiality, integrity, and security of client data when one of its contractors incurred a data breach of 14 clients:

“When a government agency has a data breach impacting the people of Connecticut, the public has a right to know. These breaches expose citizens to identity theft, insurance abuse, and fraud. This audit found that the Exchange did not implement sufficient internal controls to prevent breaches of client data and failed to report breaches in certain cases. This is completely unacceptable. We urge officials at the Exchange to seriously reevaluate its operations to ensure adequate protection of data and the transparency of information related to any data breaches.”

Sen. Hwang was appointed to serve on the Cybersecurity Task Force, but the panel was never convened due to a lack of appointed members.