25% off all training courses Offer ends May 29, 2026
View HIPAA Courses
Learner Login Learner Support
Learner Login Learner Support
25% off all training courses
View HIPAA Courses
Offer ends May 29, 2026

The HIPAA Journal is the leading provider of HIPAA training, news, regulatory updates, and independent compliance advice.

Denton County MHMR Center Data Breach Affects 109,000 Patients

Posted By on Jan 6, 2026

Denton County MHMR Center, a community behavioral health clinic in Denton, Texas, recently reported a major data breach to the Department of Health and Human Services’ Office for Civil Rights (OCR) that involved unauthorized access to the protected health information of 108,967 current and former patients. Unusual activity was identified within its computer network on or around December 24, 2024, with the investigation confirming that an unauthorized third party had access to its network from December 24 to December 25, 2024.

Denton County MHMR Center uploaded a substitute breach notice to its website on February 21, 2025, alerting patients about the incident, although at the time, the investigation and data review were ongoing, and it had yet to be determined how many individuals had been affected and the exact data types involved. On October 10, 2025, Denton County MHMR Center confirmed that the information potentially compromised in the incident included patient names, addresses, patients’ identification numbers, dates of birth, diagnosis, medical history information, medical record numbers, medical treatment information, lab information, treating doctor’s name, medication information, vaccination information, medical insurance information, and biometric identifiers.

On November 5, 2025, the data breach was reported to the HHS’ Office for Civil Rights, and state Attorneys general have now been notified. A year after the breach occurred, the affected individuals are receiving individual notification letters. At the time of issuing the letters, Denton County MHMR Center was unaware of any misuse of the exposed patient data.

Denton County MHMR Center updated its website breach notice on December 30, 2025, confirming that credit monitoring and identity protection services have been offered to the affected individuals. Denton County MHMR Center has worked with third-party cybersecurity experts to implement additional measures to improve network security, and its policies and procedures related to data protection have been reviewed and enhanced.

Get The FREE
HIPAA Compliance Checklist

Immediate Delivery of Checklist Link To Your Email Address

Please Enter Correct Email Address

Your Privacy Respected

HIPAA Journal Privacy Policy

Author: Steve Alder is the editor-in-chief of The HIPAA Journal. Steve is responsible for editorial policy regarding the topics covered in The HIPAA Journal. He is a specialist on healthcare industry legal and regulatory affairs, and has 10 years of experience writing about HIPAA and other related legal topics. Steve has developed a deep understanding of regulatory issues surrounding the use of information technology in the healthcare industry and has written hundreds of articles on HIPAA-related topics. Steve shapes the editorial policy of The HIPAA Journal, ensuring its comprehensive coverage of critical topics. Steve Alder is considered an authority in the healthcare industry on HIPAA. The HIPAA Journal has evolved into the leading independent authority on HIPAA under Steve’s editorial leadership. Steve manages a team of writers and is responsible for the factual and legal accuracy of all content published on The HIPAA Journal. Steve holds a Bachelor’s of Science degree from the University of Liverpool. You can connect with Steve via LinkedIn or email via stevealder(at)hipaajournal.com

x

Is Your Organization HIPAA Compliant?

Find Out With Our Free HIPAA Compliance Checklist

Get Free Checklist