The personal data of almost 20,000 Australians has been “inappropriately copied and removed” by an employee of Bupa’s international health insurance division.
Last Friday, Bupa Global said it had dismissed the UK-based employee responsible for a data breach affecting the records of 108,000 insurance policy holders covering 547,000 people internationally.
Bupa Global managing director Sheldon Kenton said the data taken included “names, dates of birth, nationalities, and some contact and administrative details including Bupa insurance membership numbers”.
This information is believed to have been made available to “other parties” according to Bupa Global.
Financial and medical data was not among the information copied and removed in the data breach.
A Bupa Australia spokesperson told Business Insider that 19,595 Australians were believed to be affected, and stressed that the incident “was not a cyber attack or external data breach” and did not involve customer data for Bupa Australia Health Insurance.
