Kehoe Law Firm, P.C. is making individuals aware of the following data breach cases of unsecured protected health information affecting 500 or more individuals currently under investigation by the U.S. Department of Health and Human Services, Office for Civil Rights:
Name of Covered Entity State Covered Entity Type Individuals Affected Breach Submission Date Type of Breach Location of Breached Information
Ascension Eastwood Clinics MI Healthcare Provider 999 04/23/2020 Unauthorized Access/Disclosure Email
Psychiatric Associates of North Carolina, Professional Association NC Healthcare Provider 1081 04/20/2020 Unauthorized Access/Disclosure Email
Beaumont Health MI Healthcare Provider 112211 04/17/2020 Hacking/IT Incident Email
Advocate Aurora Health WI Healthcare Provider 27137 04/16/2020 Hacking/IT Incident Email, Network Server
Medica Insurance Company MN Health Plan 802 04/15/2020 Unauthorized Access/Disclosure Paper/Films
Medica Health Plans MN Health Plan 1710 04/15/2020 Unauthorized Access/Disclosure Paper/Films
Hartford HealthCare CT Healthcare Provider 2651 04/13/2020 Hacking/IT Incident Email
Doctors Community Medical Center MD Healthcare Provider 18481 04/13/2020 Hacking/IT Incident Email
Arizona Endocrinology Center AZ Healthcare Provider 74122 04/10/2020 Unauthorized Access/Disclosure Electronic Medical Record
Corpus Christi Rehabilitation Hospital TX Healthcare Provider 507 04/10/2020 Hacking/IT Incident Email
Beacon Health Options, Inc. MA Business Associate 6723 04/10/2020 Loss Other Portable Electronic Device
Rehabilitation Hospital of Southern New Mexico NM Healthcare Provider 1843 04/10/2020 Hacking/IT Incident Email
UPMC Altoona Regional Health Services PA Healthcare Provider 13911 04/10/2020 Hacking/IT Incident Email
Brandywine Counseling & Community Services, Inc DE Healthcare Provider 4262 04/10/2020 Hacking/IT Incident Network Server
Colorado Department of Human Services, Office of Behavioral Health CO Healthcare Provider 8132 04/07/2020 Unauthorized Access/Disclosure Network Server
Healthcare Resource Group, Inc. WA Business Associate 3009 04/07/2020 Hacking/IT Incident Email
Andrews Braces NV Healthcare Provider 16622 04/07/2020 Hacking/IT Incident Network Server
Doctors HealthCare Plans, Inc. FL Health Plan 500 04/07/2020 Hacking/IT Incident Email
Child, Family and Community Services, Inc. CA Health Plan 1658 04/03/2020 Theft Laptop, Other Portable Electronic Device
University of Utah UT Healthcare Provider 5000 04/03/2020 Hacking/IT Incident Email
Confidio, LLC MD Business Associate 3600 03/31/2020 Hacking/IT Incident Email
Washington University School of Medicine MO Healthcare Provider 14795 03/31/2020 Hacking/IT Incident Email
Affordacare Urgent Care Clinics TX Healthcare Provider 57411 03/31/2020 Hacking/IT Incident Network Server
University of Minnesota Physicians MN Healthcare Provider 683 03/30/2020 Hacking/IT Incident Email
Brandywine Urology Consultants, PA DE Healthcare Provider 131825 03/27/2020 Hacking/IT Incident Desktop Computer, Email, Laptop, Network Server
Crossroads Technologies, Inc. PA Business Associate 897 03/27/2020 Hacking/IT Incident Network Server
Tryon Medical Partners, PLLC NC Healthcare Provider 701 03/27/2020 Unauthorized Access/Disclosure Email
Stockdale Radiology CA Healthcare Provider 10700 03/27/2020 Hacking/IT Incident Desktop Computer
David S Daley, DMD AZ Healthcare Provider 1000 03/26/2020 Theft Network Server
New Jersey Department of Human Services NJ Health Plan 2300 03/25/2020 Hacking/IT Incident Network Server
VA Sierra Nevada Health Care System NV Healthcare Provider 702 03/25/2020 Unauthorized Access/Disclosure Paper/Films
Renew Wellness Center, PLLC MT Healthcare Provider 730 03/23/2020 Theft Email, Other Portable Electronic Device
FACKLER FAMILY CHIROPRACTIC, LLC OH Healthcare Provider 1731 03/23/2020 Theft Paper/Films
Health Care Service Corporation IL Health Plan 575 03/23/2020 Unauthorized Access/Disclosure Email
Ambry Genetics Corporation CA Healthcare Provider 232772 03/22/2020 Hacking/IT Incident Email
University of Utah UT Healthcare Provider 3670 03/21/2020 Hacking/IT Incident Email
Georgia Department of Human Services GA Healthcare Clearing House 500 03/20/2020 Loss Paper/Films

Source: (Accessed 04.30.2020)

NOTE: The U.S. Department of Health and Human Services, Office for Civil Rights, Breach Portal, lists all breaches reported within the last 24 months that are currently under investigation by the Office for Civil Rights.  The data reported herein does not include all cases currently under investigation by the Office for Civil Rights.  Resolved data breach reports and/or reports older than 24 months can be viewed at 

Have You Been Impacted by A Data Breach?

If so, please either contact Kehoe Law Firm, P.C. Partner Michael Yarnoff, Esq., (215) 792-6676, Ext. 804, [email protected], complete the form on the right or send an e-mail to [email protected] for a free, no-obligation case evaluation of your facts to determine whether your privacy rights have been violated and whether there is a basis for a data privacy class action.

Examples of the type of relief sought by data privacy class actions, include, but are not limited to, reimbursement of identity theft losses and of out-of-pocket costs paid by data breach victims for protective measures such as credit monitoring services, credit reports, and credit freezes; compensation for time spent responding to the breach; imposition of credit monitoring services and identity theft insurance, paid for by the defendant company; and improvements to the defendant company’s data security systems.

Data privacy class actions are brought on a contingent-fee basis; thus, plaintiffs and the class members do not pay out-of-pocket attorney’s fees or litigation costs.  Subject to court approval, attorney’s fees and litigation costs are derived from the recovery obtained for the class.

Kehoe Law Firm, P.C.