On January 8, 2025, BayMark Health Services, Inc. (“BayMark”) filed a notice of data breach with the Attorney General of California after discovering that an unauthorized party accessed files on the company’s computer network. In this notice, BayMark explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, Social Security numbers, driver’s license numbers, dates of birth, services received, dates of service, insurance information, treating providers, and treatment and diagnostic information. Upon completing its investigation, BayMark began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from BayMark Health Services, Inc., it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the BayMark Health Services data breach. For more information, please see our recent piece on the topic here.
What Caused the BayMark Health Services Data Breach?
The BayMark Health Services data breach was only recently announced, and more information is expected in the near future. However, BayMark’s filing with the Attorney General of California provides some important information on what led up to the breach. BayMark also posted a website notice discussing the incident.
According to these sources, on October 11, 2024, BayMark discovered a potential data security incident that caused a disruption throughout some of its IT systems. In response, BayMark secured its network and then launched an investigation with the help of third-party cybersecurity experts.
Through this investigation, BayMark confirmed that an unauthorized party was able to access portions of its computer network between September 24, 2024 and October 14, 2024. It was later determined that some of the files contained confidential patient information.
After learning that sensitive consumer data was accessible to an unauthorized party, BayMark Health Services reviewed the compromised files to determine what information was leaked and which consumers were impacted. BayMark completed this process on November 5, 2024, and while the breached information varies depending on the individual, it may include your name, Social Security number, driver’s license number, date of birth, services received, dates of service, insurance information, treating provider, and treatment and diagnostic information.
On January 8, 2025, BayMark Health Services sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About BayMark Health Services, Inc.
BayMark Health Services, Inc. is a provider of medication-assisted treatment (“MAT”) and related services for individuals struggling with opioid use disorder and other substance use challenges. Headquartered in Lewisville, Texas, the organization operates a network of outpatient treatment facilities across the United States and Canada, offering evidence-based care through personalized treatment plans. BayMark's services include MAT programs utilizing medications such as methadone, buprenorphine, and naltrexone, alongside counseling and behavioral therapies. BayMark Health Services employs approximately 1,000 employees and generates an estimated $146 million in annual revenue.
