Strauss Borrelli PLLC, a leading data breach law firm, is investigating EngageMED, Inc. regarding its recent data breach. The EngageMED data breach may have involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.
ABOUT ENGAGEMED, INC.:
EngageMED is a full-service management services organization based in Arkansas. Founded in 1995, EngageMED provides value-based practice management and revenue cycle services to healthcare providers throughout the state of Arkansas.2 Today, EngageMED’s healthcare provider practice management services include administration, revenue cycle, information technology, and value-based payment program expertise.3 EngageMED’s clients include both privately owned and independent practices and hospital-owned integrated clinics.3 Headquartered in North Little Rock, Arkansas, EngageMED employs over 500 individuals.
WHAT HAPPENED?
Recently, EngageMED announced that it had experienced a data breach in which the sensitive personal identifiable information and protected health information in its systems may have been accessed and acquired. According to the breach notice, on or about July 3, 2024, EngageMED detected suspicious activity within its network that impacted certain systems. As a result, EngageMED launched an investigation to determine the nature of the incident.
Through its investigation, EngageMED learned that sensitive personal information in its systems may have been viewed and taken by an unauthorized third-party between June 12, 2024, and July 3, 2024. As a result, EngageMED began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Address
- Date of birth
- Government issued identification
- Medical information (e.g., dates of service, patient ID number, procedure codes, procedure costs, procedure and provider information, diagnosis information)
- Health insurance information
- Claim information
- Information related to the payment of healthcare services
On August 30, 2024, EngageMED posted a notice of the incident on its website. Additionally, on the same date, EngageMED reported the breach to the U.S. Department of Health and Human Services. Based on the breach notice on its website, EngageMED is providing affected individuals with a list of the specific type of sensitive information impacted. A link to the form breach notification that EngageMED posted to its website is below.
If you received a breach notification letter from EngageMED, Inc.:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
