Centers for Dialysis Care Reports Data Breach Affecting 8,000 Individuals
Centers for Dialysis Care, a non-profit dialysis provider based in Shaker Heights, Ohio, disclosed a data breach impacting approximately 8,000 individuals across the U.S. The incident was detected on March 20, 2026, when the organization identified suspicious activity within its network. Immediate steps were taken to secure its systems, and an investigation supported by external cybersecurity experts was launched.
The investigation revealed that an unauthorized actor had accessed files containing sensitive personal and health-related data. On April 11, 2026, the organization confirmed that exposed information may have included names, Social Security numbers, dates of birth, financial details, medical records, treatment histories, and health insurance data.
Centers for Dialysis Care reported the breach to the U.S. Department of Health and Human Services on May 15, 2026, and published a public notice on its website. To assist affected individuals, the organization established a dedicated call center (1-877-429-4026) operating Monday through Friday, 8:00 a.m. to 8:00 p.m. ET. The breach underscores the ongoing risks to healthcare data security and the potential consequences for patients and providers.
Source: https://www.claimdepot.com/data-breach/centers-for-dialysis-care-2026
Centers for Dialysis Care cybersecurity rating report: https://www.rankiteo.com/company/centers-for-dialysis-care
"id": "CEN1783348397",
"linkid": "centers-for-dialysis-care",
"type": "Breach",
"date": "3/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': '8000',
'industry': 'Healthcare',
'location': 'Shaker Heights, Ohio, USA',
'name': 'Centers for Dialysis Care',
'type': 'Non-profit healthcare provider'}],
'customer_advisories': 'Dedicated call center (1-877-429-4026), operating '
'Monday through Friday, 8:00 a.m. to 8:00 p.m. ET',
'data_breach': {'number_of_records_exposed': '8000',
'personally_identifiable_information': ['Names',
'Social Security '
'numbers',
'Dates of birth',
'Medical records',
'Treatment histories',
'Health insurance '
'data'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal data',
'Health data',
'Financial details']},
'date_detected': '2026-03-20',
'date_publicly_disclosed': '2026-05-15',
'description': 'Centers for Dialysis Care, a non-profit dialysis provider '
'based in Shaker Heights, Ohio, disclosed a data breach '
'impacting approximately 8,000 individuals across the U.S. The '
'incident involved unauthorized access to files containing '
'sensitive personal and health-related data.',
'impact': {'data_compromised': 'Sensitive personal and health-related data',
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'investigation_status': 'Completed',
'references': [{'source': 'Centers for Dialysis Care Public Notice'}],
'regulatory_compliance': {'regulations_violated': ['HIPAA'],
'regulatory_notifications': ['U.S. Department of '
'Health and Human '
'Services']},
'response': {'communication_strategy': 'Public notice on website, dedicated '
'call center',
'containment_measures': 'Immediate steps to secure systems',
'incident_response_plan_activated': 'Yes',
'third_party_assistance': 'External cybersecurity experts'},
'threat_actor': 'Unauthorized actor',
'title': 'Centers for Dialysis Care Data Breach',
'type': 'Data Breach'}