Behavioral Health Group Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating BHG Holdings, Inc., which does business as Behavioral Health Group, regarding a recent data breach. The Behavioral Health Group data breach involved sensitive personal identifiable information and protected health information belonging to over 197,000 patients.


Behavioral Health Group is a privately held network of outpatient opioid treatment and recovery centers. Founded in 2006, Behavioral Health Group provides comprehensive medical and behavioral therapies for people with opioid use disorder. Operating 117 opioid treatment and recover centers in 24 states across the United States, Behavioral Health Group serves more than 42,000 patients. Behavioral Health Group is headquartered in Dallas, Texas and employs over 1,900 individuals.


Recently, Behavioral Health Group discovered it had experienced a data breach in which the sensitive personal identifiable information and protected health information in its system may have been accessed and acquired. Behavioral Health Group launched an investigation and discovered that, on December 5, 2021, an unauthorized actor accessed and potentially removed certain files from its network. On July 27, 2022, Behavioral Health Group began notifying individuals whose information may have been impacted. The type of information exposed includes:

  • Name
  • Social Security number
  • Driver’s license or state identification number
  • Financial account information
  • Payment card information
  • Passport
  • Biometrics
  • Health insurance information
  • Medical information, including medical diagnosis and treatment
  • Dates of service
  • Medical record number

If you are a current or former patient of Behavioral Health Group:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by the Behavioral Health Group data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in the free credit monitoring service provided by Behavioral Health Group;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: