Strauss Borrelli PLLC, a leading data breach law firm, is investigating Mid-Columbia Center for Living (“MCCFL”) regarding its recent data breach. The MCCFL data breach involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.
ABOUT MID-COLUMBIA CENTER FOR LIVING:
MCCFL is a recovery-oriented, trauma-informed service provider for persons with mental health and substance abuse issues based in Oregon.2 Today, MCCFL provides a variety of mental health services, including comprehensive diagnostic evaluation and assessment, medication evaluation and management, collaborative service planning, individual therapy, family therapy, group therapy, skills training, and peer mentoring.3 Additionally, MCCFL offers a range of addiction and substance use services such as outpatient treatment, peer mentoring, drug education and rehabilitation, gambling services, prevention and intervention services, individual and group therapy, family education and counselling, medication assisted treatment, relapse prevention training, access to sober housing, and more.4 Headquartered in The Dalles, Oregon, MCCFL has two additional locations in Oregon and employs over 50 individuals.
WHAT HAPPENED?
Recently, MCCFL announced that it had experienced a data breach in which the sensitive personal identifiable information and protected health information in its systems may have been accessed and acquired. According to the breach notice, on January 24, 2024, MCCFL detected suspicious activity within an employee’s email account. As a result, MCCFL launched an investigation to determine the nature of the incident.
Through its investigation, MCCFL learned that sensitive personal information in its systems may have been viewed and taken by an unauthorized actor using the employee email account. As a result, MCCFL began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. On August 1, 2024, MCCFL completed this review. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Address
- Medical information (e.g., patient ID number, medical record number, treating physician, treatment information, treatment dates, diagnosis/conditions)
- Medicaid number
- Health insurance information
On August 19, 2024, MCCFL posted a notice of the incident on its website. Additionally, MCCFL has mailed data breach notification letters to impacted individuals. Based on the breach notice on its website, MCCFL will be providing affected individuals with a list of the specific type of sensitive information impacted and 12 months of complimentary credit monitoring services. A link to the form breach notification letter that MCCFL posted on its website below.
If you received a breach notification letter from Mid-Columbia Center from Living:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
