Rocky Mountain University Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Rocky Mountain University of Health Professions (“RMU”) regarding a recent data security incident. The RMU data security incident involved sensitive personal information and protected health information belonging to an undetermined number of individuals.


RMU is a private, graduate level university specializing in healthcare education. Established in 1998, RMU is accredited by the Northwest Commission on Colleges and Universities, an institutional accrediting body recognized by the Secretary of the U.S. Department of Education. Today, RMU offers a range of master’s degrees, doctorate degrees, and certificates through its eight departments: counseling, health sciences, nursing, occupational therapy, optometry, physical therapy, physician assistant, and speech-language pathology. Located in Provo, Utah, RMU employs over 50 individuals.


On April 28, 2023, RMU discovered that it had experienced a potential data breach in which personal identifiable information and protected health information in its systems may have been accessed and acquired. Through its investigation, RMU determined that an unauthorized party may have accessed this sensitive information through a website configuration error. On January 12, 2024, RMU began notifying individuals whose information may have been impacted. The type of information potentially exposed includes:

  • Name
  • Social Security number
  • Date of birth
  • Address
  • Phone number
  • Driver’s license number
  • Passport
  • Medical information

If you received a breach notification letter from Rocky Mountain University of Health Professions:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by the RMU data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in any free credit monitoring services provided by Rocky Mountain University of Health Professions:
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: