Knoxville-based Tennessee Orthopaedic Clinics recently discovered a security incident that disrupted some system operations.
The unauthorized party accessed files between March 20 and March 24, according to a post on the company's website.
Patient data that may have been accessed includes names, contact information, dates of birth, diagnosis and treatment information, provider names, dates of service, cost of services, prescription information and health insurance information.
The files are currently under review, and Tennessee Orthopaedic Clinics will notify patients who may have had their information involved, the post said.