On May 3, 2024, Redwood Coast Regional Center (“RCRC”) filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering unauthorized activity within its computer network. In this notice, RCRC explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, addresses, phone numbers, email addresses, dates of birth, Social Security Numbers, driver’s license numbers, state ID numbers, financial account information, medical information, and health insurance information. Upon completing its investigation, RCRC began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from Redwood Coast Regional Center, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Redwood Coast Regional Center data breach. For more information, please see our recent piece on the topic here.

What Caused the Redwood Coast Regional Center Data Breach?

The Redwood Coast Regional Center data breach was only recently announced, and more information is expected in the near future. However, RCRC’s filing with the U.S. Department of Health and Human Services Office for Civil Rights provides some important information on what led up to the breach. According to this source, on March 6, 2024, RCRC detected unusual activity within its computer network. In response, RCRC secured its systems and then began working with third-party data security specialists to investigate the incident.

Through this investigation, RCRC confirmed that an unauthorized party was able to access its computer network, including files containing confidential consumer information.

After learning that sensitive consumer data was accessible to an unauthorized party, Redwood Coast Regional Center reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, address, phone number, email address, date of birth, Social Security Number, driver’s license number, state ID number, financial account information, medical information, and health insurance information.

On May 3, 2024, Redwood Coast Regional Center filed notice with the HHS-OCR. Typically, this is when companies send out data breach letters to anyone who was affected by the recent data security incident. However, the timeline for the RCRC breach may be different. Regardless, these letters should provide victims with a list of what information belonging to them was compromised.

More Information About Redwood Coast Regional Center

Redwood Coast Regional Center is a non-profit organization based in Ukiah, California. RCRC provides intake, assessment, diagnosis, and coordinated community-based services for over 10,000 children and adults with developmental disabilities in Del Norte, Humboldt, Lake, and Mendocino counties. Redwood Coast Regional Center employs more than 97 people and generates approximately $125 million in annual revenue.