CHI Health Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating CHI Health and its parent company, Catholic Health Initiatives, regarding a recent data breach. According to notices on both CHI Health’s and Catholic Health Initiatives’ websites, the data breach involved sensitive personal identifiable information and protected health information belonging to an undisclosed number of patients.


CHI Health is a regional health network servicing Nebraska and southwestern Iowa. CHI Health’s network includes 14 hospitals, two behavioral health facilities, and 150 physician practice locations. CHI Health is headquartered in Omaha, Nebraska, and has over 12,000 employees.

Catholic Health Initiatives, the parent company of CHI Health, is the third largest nonprofit health system in the United States. Catholic Health Initiatives offers care to 18 states through 101 hospitals and clinics. Founded in 1996, Catholic Health Initiatives is headquartered in Englewood, Colorado. As determined in 2018, Catholic Health Initiatives has total assets of $20.6 billion and employs over 90,000 individuals.


On June 13, 2022, CHI Health and Catholic Health Initiatives disclosed that one of their vendor partners, MCG Health, LLC, experienced a data breach in which the sensitive personal identifiable information and protected health information of CHI Health and Catholic Health Initiatives patients may have been accessed and acquired. MCG Health, LLC is notifying individuals impacted on the CHI Health’s and Catholic Health Initiatives’ behalf. The type of information exposed includes:

  • Name
  • Social Security number
  • Medical Codes
  • Postal address
  • Telephone number
  • Email address
  • Dates of birth
  • Gender

If you are a current or former patient at CHI Health or another Catholic Health initiatives division:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by the CHI Health/Catholic Health Initiatives data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in the free credit monitoring service provided by MCG Health, LLC;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: