HIPAA Journal is the leading provider of news, updates, and independent advice for HIPAA compliance

Adaptive Health Integrations Data Breach Affects More than 510,000 Individuals

An Adaptive Health Integrations data breach has recently been reported to the Department of Health and Human Services’ Office for Civil Rights (OCR) that involved the protected health information (PHI) of 510,574 individuals.

Adaptive Health Integrations is listed as a Williston, North Dakota-based provider of LIS software services and billing/revenue services to laboratories, physician offices, and other healthcare companies. The notification letters, a copy of which was found on the Montana Attorney General website, state that the company recently became aware that an unauthorized individual had gained access to its system on or around October 17, 2021, and may have accessed “a limited amount of data stored on our systems.”

The letters explained that when the unauthorized access was discovered, the threat was immediately contained, and an investigation was launched. A comprehensive review of affected files was conducted, and that process was concluded on February 23, 2022. The notification letters state that credit monitoring, fraud consultation, and identity theft restoration services are being offered through Kroll for 12 months at no cost.

The notification letters do not provide any information about who Adaptive Health Integrations is or why they hold individuals’ PHI. Some individuals who received a notification letter have posted online questing the legitimacy of the notification letters, which were written on paper with a photocopied company logo. After checking the company website some have posted that they think this is a scam.

Get The Checklist

Free and Immediate Download
of HIPAA Compliance Checklist

Delivered via email so verify your email address is correct.

Your Privacy Respected

HIPAA Journal Privacy Policy

A Google search for the company returns a result that is a 2-page site that has a placeholder for the contact us page that includes dummy text. There is no mention of a data breach on the company website at the time of issuing notifications.

The law firm Migliaccio & Rathod LLP says it has started an investigation into the Adaptive Health Integrations data breach.

This post will be updated when further information becomes available.

Author: Steve Alder is the editor-in-chief of HIPAA Journal. Steve is responsible for editorial policy regarding the topics covered on HIPAA Journal. He is a specialist on healthcare industry legal and regulatory affairs, and has several years of experience writing about HIPAA and other related legal topics. Steve has developed a deep understanding of regulatory issues surrounding the use of information technology in the healthcare industry and has written hundreds of articles on HIPAA-related topics.