In the event of a security incident impacting customer data, Brightside Health will notify you in writing about the incident, which shall include the information that may have been compromised, the cause of the breach, and any remedial actions Brightside is taking to mitigate damages and prevent any recurrences. Additionally, Brightside will self-report the breach to the Department of Health & Human Services.