Strauss Borrelli PLLC, a leading data breach law firm, is investigating Gaylord Farm Association Inc. which does business as Gaylord Specialty Healthcare (“Gaylord”), regarding its recent data breach. The Gaylord data breach may have involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.
ABOUT GAYLORD FARM ASSOCIATION INC. D/B/A GAYLORD SPECIALTY HEALTHCARE:
Gaylord is a health system dedicated exclusively to medical rehabilitation based in Connecticut. Founded in 1902, Gaylord began as a tuberculosis sanatorium but turned its expertise towards other forms of rehabilitation, beginning with chronic pulmonary disorders, stroke, brain injury, and spinal cord injury. 2,3 Today, Gaylord has its long-term acute care hospital that includes Gaylord Outpatient and Gaylord Physical Therapy entities.3 Headquartered in Wallingford, Connecticut, Gaylord employs over 500 individuals.3
WHAT HAPPENED?
Recently, Gaylord announced that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised.4 According to the breach notice shared on its website, in December 2025 Gaylord experienced a cybersecurity incident that impacted connectivity to its network.1 As a result, Gaylord launched an investigation to determine the nature of the incident.
Through its investigation, on August 25, 2025, Gaylord confirmed that the sensitive personal information and protected health information in its network may have been accessed and acquired by an unauthorized third party between December 16 and December 19, 2024.1 As a result, Gaylord began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Date of birth
- Identification records (taxpayer ID number, drivers license or state ID number, passport number)
- Financial information (account number, routing number, payment card number, payment card CVV)
- Health insurance information (billing/claim information, health insurance group number, health benefit plan name, subscriber member number and/or patient account number)
- Medical information (medical record numbers, medical date of service, admission date, discharge date, prescription information)
As a result of the breach, Gaylord posted notice of the data breach on its website. Additionally, on September 24, 2025, Gaylord began mailing breach notification letters to impacted individuals. Based on the website breach notice, Gaylord is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services.1 A link to the website breach notice is below.
If you have received a breach notification letter from Gaylord Farm Association Inc. d/b/a Gaylord Specialty Healthcare:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
