On March 14, 2025, Baylor Scott & White Texas Spine & Joint Hospital posted a “Notice of Data Security” on its website after discovering that an unauthorized party gained access to a company email account. In this notice, Baylor Scott & White Texas Spine & Joint Hospital explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their name, date of birth, medical information, and billing & claims information. Upon completing its investigation, Baylor Scott & White Texas Spine & Joint Hospital began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from Baylor Scott & White Texas Spine & Joint Hospital, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Baylor Scott & White Texas Spine & Joint Hospital data breach. For more information, please see our recent piece on the topic here.
What Caused the Baylor Scott & White Texas Spine & Joint Hospital Data Breach?
The Baylor Scott & White Texas Spine & Joint Hospital data breach was only recently announced, and more information is expected in the near future. However, Baylor Scott & White Texas Spine & Joint Hospital’s website notice provides some important information on what led up to the breach. According to this source, on January 15, 2025, Baylor Scott & White Texas Spine & Joint Hospital learned that an unauthorized party was able to access a company email account hosted by Microsoft 365.
In response, Baylor Scott & White Texas Spine & Joint Hospital contained the incident and then launched an investigation to learn more about what happened and whether any patient information was compromised. Through this investigation, Baylor Scott & White Texas Spine & Joint Hospital determined that an unauthorized party accessed the email account, which was later confirmed to contain personal information. Evidently, the unauthorized party had access to the account between January 10, 2025 and January 14, 2025.
After learning that sensitive consumer data was accessible to an unauthorized party, Baylor Scott & White Texas Spine & Joint Hospital reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, date of birth, medical information, and billing & claims information.
On March 14, 2025, Baylor Scott & White Texas Spine & Joint Hospital sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About Baylor Scott & White Texas Spine & Joint Hospital
Baylor Scott & White Texas Spine & Joint Hospital is a specialized medical facility focused on orthopedic and spine care. Headquartered in Tyler, Texas, the hospital provides advanced surgical and non-surgical treatments for spine, joint, and musculoskeletal conditions, including minimally invasive procedures, pain management, and rehabilitation services. The organization employs approximately 278 people and generates an estimated $43 million in annual revenue.
