Behavioral Health Group Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating BHG Holdings, Inc., which does business as Behavioral Health Group, regarding a recent data breach. The Behavioral Health Group data breach involved sensitive personal identifiable information and protected health information belonging to over 197,000 patients.

ABOUT BEHAVIORAL HEALTH GROUP:

Behavioral Health Group is a privately held network of outpatient opioid treatment and recovery centers. Founded in 2006, Behavioral Health Group provides comprehensive medical and behavioral therapies for people with opioid use disorder. Operating 117 opioid treatment and recover centers in 24 states across the United States, Behavioral Health Group serves more than 42,000 patients. Behavioral Health Group is headquartered in Dallas, Texas and employs over 1,900 individuals.

WHAT HAPPENED?

Recently, Behavioral Health Group discovered it had experienced a data breach in which the sensitive personal identifiable information and protected health information in its system may have been accessed and acquired. Behavioral Health Group launched an investigation and discovered that, on December 5, 2021, an unauthorized actor accessed and potentially removed certain files from its network. On July 27, 2022, Behavioral Health Group began notifying individuals whose information may have been impacted. The type of information exposed includes:

• Name
• Social Security number
• Driver’s license or state identification number
• Financial account information
• Payment card information
• Passport
• Biometrics
• Health insurance information
• Medical information, including medical diagnosis and treatment
• Dates of service
• Medical record number