I upvote this sort if thing for visibility, but I'd rather it not be a thing.
Pulse of Truth
Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).
This community is automagically fed by an instance of Dittybopper.
The real question is why a debt collector had patient medical information to begin with. That sounds like a massive HIPAA violation; Under HIPAA, debt collectors are only supposed to be given the bare minimum info to be able to collect the debt. Typically, that consists of the patient’s contact info, and how much is owed. They very rarely get any kind of supporting documents, because that would divulge too much info.
One of the fastest ways to get a medical debt collector to delete your debt entirely is to get them to slip up and mention that they have info regarding your diagnoses or treatments. As soon as they mention that they know what the bill is for, (for instance, saying it’s a bill for a heart surgery instead of simply saying it’s a bill from a heart surgeon’s office,) you can start threatening to sue and file HIPAA complaints. They’ll almost always agree to delete the debt if you agree not to sue. And even then, you should still make the HIPAA report regardless, because they can’t legally stop you from doing it and it’s one of the few ways to hold scummy debt collectors accountable.