25 Years Of Practice

MCG Health, LLC Data Breach

On Behalf of | Jun 14, 2022 | Firm News |

A growing list of healthcare systems has been affected by a data security event involving MCG Health, LLC (“MCG”). MCG is a Seattle-based software company with a majority of U.S. health plans and nearly 2,600 hospitals utilizing its solutions.

Sometime prior to March 25, 2022, an unauthorized party gained access to personal identifiable information (“PII”)and/or protected health information (“PHI”) of some patients and members of certain MCG customers. The PII and/or PHI included names, Social Security numbers, date of birth, addresses, telephone numbers, email addresses, gender, and medical codes. On or about April 22, 2022, MCG notified its affected customers (i.e., healthcare systems) of the breach. In turn, MCG customers began notifying their patients in June 2022. Additionally, on behalf of its customers, MCG will be notifying patients of the breach.

The growing list of healthcare systems affected by the MCG data breach includes:

Catholic Health Initiatives Avera Health CHI Health (Creighton University Medical Center-Bergan Mercy, Immanuel Medical Center, and Lakeside Hospital)
Copley Hospital


Indiana University Health Affiliated Cover Entity


Newman Regional Health


Phelps Health


Jefferson County Health Center


UNC Lenoir Health Care


If you or a loved one received a notification letter that your PII/and or PHI was impacted by this breach, Goldenberg Schneider, LPA would like to discuss your legal rights and options. You can contact us by calling (513) 982-1569 or you may complete the form below.

Contact Us