Strauss Borrelli PLLC, a leading data breach law firm, is investigating Advanced Homecare Management, LLC, which does business as Enhabit Home Health & Hospice (“Enhabit”) regarding its recent data breach. The Enhabit data breach involved sensitive personal information and protected health information belonging to an undetermined number of 22,500 individuals.
ABOUT ADVANCED HOMECARE MANAGEMENT, LLC D/B/A ENHABIT HOME HEALTH & HOSPICE:
Enhabit is a home health and hospice care company based in Texas. Founded in 1998, Enhabit provides a range of home health and hospice care services to individuals and families, including occupational therapy, physical therapy, speech therapy, medical social work, pain relief management, medical equipment, and more.2,3 As of 2024, Enhabit has provided care for over 235,000 patients across the country.2 Headquartered in Dallas, Texas, Enhabit employs over 10,000 individuals and operates approximately 362 locations in 34 states.2,3
WHAT HAPPENED?
Recently, Enhabit announced that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice shared on its website, on December 5, 2025, Enhabit was notified by Doctor Alliance, a third-party company which provides medical information portals for entities affiliated with Enhabit, that a potential data security incident may have impacted certain Enhabit patient information hosted by Doctor Alliance.1 As a result, Doctor Alliance launched an investigation to determine the nature of the incident.
Through its investigation, Doctor Alliance confirmed to Enhabit that sensitive personal information in the Doctor Alliance platform related to Enhabit patients may have been accessed by an unauthorized third party between both October 31 and November 6, 2025, and again between November 14 and November 17, 2025. As a result, Enhabit began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Address
- Date of birth
- Medical record number
- Clinical information
- Physician name
- Health plan number
As a result of the breach, Enhabit posted notice of the breach on its website. On February 5, 2026, Enhabit filed official notice of the data breach with the U.S. Department of Health and Human Services’ Office for Civil Rights.4 Based on the website breach notice residents, Enhabit is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the website breach notice is below.
If you believe you have been affected by the Advanced Homecare Management, LLC d/b/a Enhabit Home Health & Hospice breach:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
