The compromised PHI included some Social Security numbers, patients??? first and last names, date of birth, patient and billing account information such as diagnosis codes, scheduling information, insurance information, account numbers and medical chart numbers.