On April 29, 2024, American Renal Associates d/b/a Innovative Renal Care, filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering that an unauthorized party was able to access confidential information that had been provided to the company. In this notice, American Renal Associates explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information. Upon completing its investigation, American Renal Associates began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from American Renal Associates, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the American Renal Associates data breach. For more information, please see our recent piece on the topic here.

What Caused the American Renal Associates Data Breach?

The American Renal Associates data breach was only recently announced, and more information is expected in the near future. Unfortunately, American Renal Associates’ filing with the U.S. Department of Health and Human Services Office for Civil Rights provides only very limited information on what led up to the breach.

A ransomware gang had previously taken credit for the attack, which the group claims took place on March 2, 2024. The group was able to obtain roughly 5 TB of data, including patient names, dates of birth, phone numbers, email addresses, medical records, Social Security numbers, copies of passports and driver’s licenses, health insurance information, and company data. The gang also claims to have leaked the data.

On April 29, 2024, American Renal Associates notified the U.S. Department of Health and Human Services Office for Civil Rights of the data breach. Typically, this is about the time when companies send out data breach letters to all affected consumers. However, the timeline for the American Renal Associates data breach could be different. Regardless, these letters should provide victims with a list of what information belonging to them was compromised.

More Information About American Renal Associates

American Renal Associates provides dialysis services through a network of 250 dialysis centers in 25 states. American Renal Associates also partners with seven health systems and more than 400 nephrologists nationwide. American Renal Associates employs more than 4,752 people and generates approximately $752 million in annual revenue.



Source link