March 14, 2024

R1 RCM Announces Data Breach Affecting Patients of Dignity Health’s St. Rose Dominican Hospital de Lima

+ Follow Contact

Send

Embed

In March 2024, R1 RCM Inc. filed a notice of data breach with the Attorney General of Massachusetts after discovering that an unauthorized party was able to access confidential information belonging to certain consumers. In this notice, R1 explains that the incident resulted in an unauthorized party being able to access consumers’ names, contact information, dates of birth, Social Security numbers, locations of services, clinical information, diagnosis information, patient account numbers and medical record numbers. Upon completing its investigation, R1 began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from R1 RCM Inc. regarding information you provided to Dignity Health – St. Rose Dominican Hospital de Lima, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the R1 RCM data breach. For more information, please see our recent piece on the topic here.

What Caused the Data Breach Affecting Patients of Dignity Health – St. Rose Dominican Hospital de Lima?

The R1 RCM data breach was only recently announced, and more information is expected in the near future. However, to clear things up, Dignity Health – St. Rose Dominican Hospital de Lima did not experience a breach. The breach occurred at R1 RCM, a revenue cycle management company that provides certain services to Dignity Health.

R1’s filing with the Attorney General of Massachusetts provides some important information on what led up to the breach. According to this source, on November 17, 2023, R1 learned that information belonging to certain Dignity Health patients was in the possession of an unauthorized party. In response, R1 launched an investigation to learn more about the incident and determine what, if any, consumer data was leaked as a result. On January 11, 2024, R1 finished its investigation, confirming that an unauthorized party was able to access information belonging to patients of Dignity Health.

After learning that sensitive consumer data was accessible to an unauthorized party, R1 RCM reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, contact information, date of birth, Social Security number, location of services, clinical information, diagnosis information, patient account number and medical record number.

In March 2024, R1 RCM sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information of theirs was compromised.

More Information About R1 RCM Inc.

R1 RCM Inc. is a business services company based out of Murray, Utah. R1 provides technology-based revenue cycle management services for hospitals, health systems, physician groups, and other entities in the healthcare industry. R1 has over 1,000 clients across the United States, including hospitals, health systems, and physician groups. R1 RCM employs more than 27,200 people and generates approximately $2.1 billion in annual revenue.

Send Print Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.