Strauss Borrelli PLLC, a leading data breach law firm, is investigating Health & Palliative Services of the Treasure Coast, Inc., which does business as Treasure Health regarding its recent data breach. The Treasure Heath data breach may have involved sensitive personal identifiable information and protected health information belonging to over 22,000 individuals.
ABOUT HEALTH & PALLIATIVE SERVICES OF THE TREASURE COAST, INC. D/B/A TREASURE HEALTH:
Treasure Health is a non-profit healthcare organization based in Florida. Founded in 1982, Treasure Health specializes in hospice and provides a variety of programs and services to individuals, including hospice care, pediatric care, grief support, music therapy, massage therapy, and more.3,4 Today, Treasure Health serves more than 4,000 patients annually in Martin, St. Lucie and Okeechobee counties in Florida.4 Headquartered in Stuart, Florida, Treasure Health has six additional locations in Florida and employs over 200 individuals.
WHAT HAPPENED?
Recently, Treasure Health reported to the Attorney General of Maine that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its systems may have been accessed. According to the breach notice, on February 27, 2024, Treasure Health became aware of unusual activity on its network due to a business email compromise of a single employee email account.1 As a result, Treasure Health launched an investigation to determine the nature of the incident.
Through its investigation, Treasure Health confirmed that sensitive personal information in its systems may have been compromised by an unauthorized third party during the incident. As a result, Treasure Health began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. On September 27, 2024, Treasure Health completed this review. While the exact type of personal information potentially exposed has not been made publicly available by Treasure Health, the breach notice states that personal information or protected health information may have been impacted. Additionally, according to state reporting guidelines, “personal information” can include the following types of information:
- Name
- Social Security number
- Driver’s license or state identification card number
- Account number, credit card number or debit card number, if circumstances exist wherein such a number could be used without additional identifying information, access codes or passwords
- Account passwords or personal indemnification numbers or other access codes
On November 7, 2024, Treasure Health began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to Maine residents, Treasure Health is providing affected individuals with a list of the specific types of sensitive information impacted and 12 months of complimentary credit monitoring services. A link to the form breach notification letters that Treasure Health filed with the Attorney General of Maine is below.
If you received a breach notification letter from Health & Palliative Services of the Treasure Coast, Inc. d/b/a Treasure Health:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
