CorrectHealth Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating CorrectHealth regarding its recent data breach. The CorrectHealth data breach involved sensitive personal identifiable information and protected health information belonging to over 54,000 individuals.


CorrectHealth is a private healthcare company that specializes in providing services to correctional officers and staff. Founded in 2000, CorrectHealth works to provide onsite healthcare services in prison and jail facilities, including services such as primary care, behavioral health services, dental services, and more. Headquartered in Alpharetta, Georgia, CorrectHealth has since expanded its operations across the United States. Today, CorrectHealth is the largest provider of private correctional healthcare in Georgia and Louisiana and employs more than 500 individuals.


On November 10, 2021, CorrectHealth experienced a data breach in which the sensitive personal identifiable information and protected health information in its systems may have been accessed. Through its investigation, CorrectHealth determined that an unauthorized actor may have accessed this sensitive information through employee email accounts. On August 25, 2022, CorrectHealth began notifying individuals whose information may have been impacted. The type of information exposed includes:

  • Name
  • Social Security number
  • Driver’s license number
  • Passport number
  • Financial information account information
  • Medical information

If you received a breach notification letter from CorrectHealth:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by the CorrectHealth data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in the free credit monitoring service provided by CorrectHealth;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: