A computer stolen from a California healthcare organization has potentially exposed the personal information of nearly 4 million patients. The password-protected but unencrypted machine contained a patient database. The database included names, addresses, dates of birth, phone numbers, email addresses, medical record numbers, and health insurance plan providers. Sutter Health had been implementing encryption at the time of the theft. The company maintains that the stolen computer did not contain any patient financial data, Social Security numbers, or actual medical records.”]