State health department warns: Job applicants' personal data exposed

The state health agency said it launched an investigation into the matter after administrators there first learned of the security breach on Sept. 27, and directed the unidentified vendor, who was not identified, to destroy the personal data contained in the emailed document.

According to the DHHS, the data contained in the spreadsheet pertained to applicants who underwent routine drug screenings in order to be considered for employment, intern and volunteer opportunities at the agency. Officials said a person's name on the spreadsheet was included based on job applications within a certain time period. The agency did not disclose what dates were part of that time frame.

Because the email was not encrypted, there is a chance that the email -- and the data contained in it -- could have been hacked by a third party.

"While DHHS cannot determine for certain that the email was not intercepted during transmission, DHHS has determined that the risk of misuse of the personal information is low," the agency said in a written statement.

Officials said they have conducted an internal review to prevent a similar incident from occurring in the future.

"The department has reviewed proper procedures with employees and is continuing to review its internal processes to ensure the correct handling of data moving forward," the agency's statement said.

Administrators said they have notified the applicants who were affected by the incident by mail. Anyone who believes they have been impacted by the incident can call 800-662-7030.