Strauss Borrelli PLLC, a leading data breach law firm, is investigating OSF Saint Clare Medical Center (“OSF Saint Clare”) regarding its recent data breach. The OSF Saint Clare data breach involved sensitive personal information and protected health information belonging to an undetermined number of individuals.
ABOUT OSF SAINT CLARE MEDICAL CENTER:
OSF Saint Clare is a medical center based in Illinois. As part of the OSF HealthCare network, OSF Saint Clare provides a range of medical services to patients, including services for mental health, oncology, emergency care, primary care, surgery, orthopedics, and more.2,3,4 Headquartered in Princeton, Illinois, OSF Saint Clare is part of larger health network that employs over 26,000 individuals across 171 locations.3,5
WHAT HAPPENED?
Recently, OSF Saint Clare announced that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice shared on its website, on September 29, 2025, Cerner, a third-party vendor for OSF Saint Clare, informed OSF Saint Clare that an unauthorized party gained access to legacy Cerner systems and obtained certain data.1 As a result, Cerner launched an investigation to determine the nature of the incident.
Through its investigation, Cerner confirmed to OSF Saint Clare that sensitive personal information in Cerner systems related to OSF Saint Clare patients may have been accessed and acquired by an unauthorized third party as early as January 22, 2025. As a result, Cerner and OSF Saint Clare began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Medical records (medical record numbers, doctors, diagnoses, medicines, test results, images, care, and treatment)
As result of the breach, OSF Saint Clare posted notice of the breach on its website. Additionally, on December 16, 2025, Cerner began mailing data breach notification letters to impacted individuals on behalf of OSF Saint Clare. Based on the website breach notice, OSF Saint Clare and Cerner are providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the website breach notice is below.
If you received a breach notification letter from OSF Saint Clare Medical Center:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
