What Is This About?

If you recently received a letter or an email from Heartland Health Center, Inc. (“Heartland Health”) informing you that your sensitive personal and protected health information was compromised in a data breach, we would like to speak with you about your rights and potential legal remedies. Heartland Health Center, Inc. recently disclosed that it was the victim of a data breach that exposed individuals’ sensitive personal and protected health information.

What Happened?

On February 4, 2025, Heartland Health Center, Inc., a healthcare provider headquartered in Grand Island, Nebraska, discovered that it had been the victim of a cybersecurity incident involving unauthorized access to its network environment by an unknown third party. Upon detection, Heartland Health launched an investigation with the assistance of third-party forensic and cybersecurity experts to determine the nature and scope of the breach. The investigation determined that the February 4, 2025 incident may have exposed data without authorization. Following the investigation, Heartland Health Center, Inc. conducted a comprehensive data review to identify affected individuals and determine the specific information involved. This review determined on June 3, 2025 that certain sensitive or personal information contained in Heartland Health’s network may have been exposed as a result of the incident. On October 17, 2025, Heartland Health Center, Inc. reported the breach to the Massachusetts Attorney General and began mailing data breach notification letters to impacted individuals.

What Information Was Impacted?

Upon information and belief, the following types of sensitive personal and protected health information may have been compromised:
  • Name;
  • Social Security number;
  • Date of birth;
  • Driver license number;
  • Financial account number;
  • Username and access information for a non-financial account;
  • Medical information (date of medical service, diagnosis, physician or facility information, condition, medical record number, and patient account number);
  • Insurance information (individual policy numbers, Medicare or Medicaid numbers);
  • Certificate or license numbers;
  • Full-face photos; and
  • Referral information;
 

What Action Can You Take?

My Data Breach Attorney is investigating whether affected users are entitled to compensation. If you received a notice from Heartland Health Center, there is no cost or obligation to participate. Complete the form above to find out about your rights and potential legal remedies available.

About Heartland Health Center

Heartland Health Center, Inc., headquartered in Grand Island, Nebraska, is a comprehensive healthcare provider offering a range of services, including medical care, dental care, and behavioral health services. The organization employs over 50 healthcare professionals and operates multiple facilities in Grand Island, Hastings, and Ravenna, Nebraska, serving local communities with accessible, patient-focused care.

About

My Data Breach Attorney

Backed by the nationally recognized law firm Levi & Korsinsky, we combine decades of legal expertise with an unwavering focus on consumer advocacy. Levi & Korsinsky is a nationally recognized consumer advocacy law firm that has recovered hundreds of millions of dollars against the largest of corporations. The firm is a 100% contingency firm – we don't get paid unless you get paid! Prior results do not guarantee similar outcomes.

Frequently Asked Questions

Know Your Legal Rights After a Data Breach Incident

A data breach occurs when sensitive, confidential, or protected information is accessed, disclosed, or stolen without authorization. This may include personal data, financial information, medical information, or business secrets.

Our firm provides the following services:

  • Investigating the breach and determining liability.
  • Filing lawsuits or claims against negligent companies.
  • Helping recover financial damages.
  • Advising on legal steps to protect your rights.

As a consumer, you have the right to:

  • Be notified of the breach under U.S. laws, such as the California Consumer Privacy Act (CCPA) or General Data Protection Regulation (GDPR) if applicable.
  • Seek compensation for financial or reputational harm.
  • Take legal action against the entity responsible for negligence.

Depending on the case, you may be entitled to:

  • Reimbursement for financial losses (e.g., identity theft).
  • Compensation for emotional distress or loss of privacy.
  • Punitive damages if negligence is proven.

Yes, time is critical. If you suspect your data has been compromised:

  • Secure your accounts by changing passwords.
  • Monitor your credit reports for unusual activity.
  • Contact a law firm to explore legal options for compensation.

Our firm works on a contingency fee basis, meaning you pay nothing upfront. We only get paid if we recover compensation for you.

Take Action. Choose My Data Breach Attorney