On March 10, 2025, Vision Upright MRI filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering that an unauthorized party was able to access information that had been provided to the company. In this notice, Vision Upright MRI explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information. Upon completing its investigation, Vision Upright MRI began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you receive a data breach notification from Vision Upright MRI, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Vision Upright MRI data breach. For more information, please see our recent piece on the topic here.
What Caused the Vision Upright MRI Data Breach?
The Vision Upright MRI data breach was only recently announced, and more information is expected in the near future. However, at this point, Vision Upright MRI does not appear to have posted a website notice or issued a press release discussing the incident, and the company’s filing with the U.S. Department of Health and Human Services Office for Civil Rights provides only limited information on what led up to the breach.
Based on the available information, the Vision Upright MRI was the result of a “Hacking / IT Incident” affecting a network server. While this may mean that hackers accessed Vision Upright MRI’s IT network without authorization, it’s also possible that Vision Upright MRI is reporting a third-party data breach that occurred at one of its vendors or partners.
Either way, after learning that sensitive consumer data was accessible to an unauthorized party, Vision Upright MRI reviewed the compromised files to determine what information was leaked and which consumers were impacted. Unfortunately, the data breach portal on the U.S. Department of Health and Human Services Office for Civil Rights website does not list what data was leaked. However, Vision Upright MRI will likely soon be sending out personalized data breach letters to anyone who was affected by the recent data security incident. Once sent, these letters should provide victims with a list of what information belonging to them was compromised.
More Information About Vision Upright MRI
Vision Upright MRI, located in San Jose, California, specializes in multipositional, truly open MRI scanning services. Their technology allows patients to be scanned in various positions—standing, sitting, flexion, extension, rotation, and lateral bending—providing comprehensive diagnostic capabilities. This approach enhances patient comfort, particularly benefiting those who experience claustrophobia in traditional MRI machines. Vision Upright MRI has been serving the community since 2008 and employs a team of 30 professionals, generating an estimated annual revenue of $5 million.
