Cedar Point Health Data Breach Exposes Medical Info, SSNs, More

A potential class action lawsuit is under investigation following a data security incident at Cedar Point Health, a medical services provider located in Western Colorado. Attorneys are currently gathering information from individuals who may have had their personal and health information compromised in the breach.

Cedar Point Health Data Breach: What Happened?

The Incident Timeline

On June 15, 2025, unauthorized access to Cedar Point Health’s network occurred. The company detected this access on June 16, 2025, and immediately began efforts to secure the network and investigate the incident. Their review, completed on January 27, 2026, determined that compromised files potentially contained personal and protected health information.

What Information Was Exposed?

The data breach potentially exposed a wide range of sensitive information, varying by individual. This included names, addresses, birthdates, medical and clinical details, health insurance information, and financial account details. Identification numbers such as driver’s licenses, passports, Social Security numbers, and Individual Taxpayer Identification Numbers (ITINs) may have been accessed.

Did You Know? Cedar Point Health detected the initial unauthorized access to its network on June 16, 2025, following an incident that occurred the previous day, June 15, 2025.

Notification Process

Individuals affected by the Cedar Point Health data breach are expected to be notified by mail, provided the company has their current mailing address.

What Happens Next?

If a class action lawsuit is filed, it could potentially result in compensation for those affected by the breach. This compensation could cover losses related to privacy, time spent addressing the incident, and any out-of-pocket expenses incurred.

A successful lawsuit could also compel Cedar Point Health to enhance its data security measures to better protect patient information in the future. However, whether a lawsuit will be filed, and its ultimate outcome, remains uncertain.

Expert Insight: Data breaches involving healthcare providers are particularly concerning due to the highly sensitive nature of the information compromised. The potential for identity theft, financial fraud, and misuse of medical information underscores the importance of robust data security practices within the healthcare sector.

Cedar Point Health Data Breach Notice

Impacted Data:

Social Security Number
Date of Birth
Health Insurance Information
Address
Financial Account Information
Passport Number
Name
Medical Treatment Information
Individual Taxpayer ID
Procedure Information
Driver’s licence/State ID Number
Clinical Information
Diagnosis Information

If you believe your information was exposed, you can fill out a form to connect with attorneys investigating the incident.

Frequently Asked Questions

What types of information were potentially compromised?

The compromised files potentially contained names, addresses, birthdates, medical and clinical information, health insurance and financial account details, and identification numbers like driver’s licenses, passports, and Social Security numbers or ITINs.

When did Cedar Point Health discover the breach?

Cedar Point Health detected unauthorized access to its network on June 16, 2025, following an incident that occurred on June 15, 2025. The conclusion that the files contained personal or protected health information was reached on January 27, 2026.

How will affected individuals be notified?

Those affected by the Cedar Point Health data breach should be notified by mail, provided the company has their mailing address.

Considering the increasing frequency of data breaches in the healthcare industry, what steps can individuals take to proactively protect their personal and medical information?