Notice of Data Security Incident Regarding City Health Patient Records

View Official Notice
BASS Medical Group Affiliate
Montclair Village
San Leandro
(510) 272-7504
Mon – Fri: 9:00am – 7:00pm, Sat – Sun: 8:30am – 5:00pm
Montclair Village
(510) 984-2489
San Leandro

City Health Provides Notice of Data Security Incident

FOR IMMEDIATE RELEASE

City Health Provides Notice of Data Security Incident

City Health, a medical corporation, is providing notice of a data security incident involving its electronic medical records system.

What Happened

On March 30, 2026, City Health discovered that an unauthorized individual accessed its electronic medical records platform (DrChrono) on March 2, 2026 and March 11, 2026. The access occurred through credentials that were not authorized by City Health and were associated with a third-party account. The individual involved was a former business counterparty whose access to City Health’s systems had been previously terminated. Upon discovery, City Health immediately revoked the unauthorized access and initiated an investigation into the scope and impact of the incident.

What Information Was Involved

The information accessed may have included certain patient information stored within City Health’s electronic medical records system. Based on the investigation to date, this may include patient names, addresses, dates of birth, contact information, demographic information, insurance information, medical treatment and procedure information, and internal billing or financial data associated with patient accounts.

What We Are Doing

City Health takes the privacy and security of patient information very seriously. Upon learning of this incident, City Health took immediate steps to contain and address the situation, including:

  • Revoking unauthorized access and securing affected accounts
  • Conducting a comprehensive investigation with internal and external resources
  • Reviewing system access controls and enhancing security measures
  • Initiating notifications to affected individuals
  • Evaluating additional safeguards to prevent similar incidents in the future

City Health is also complying with all applicable regulatory requirements, including notification to appropriate state and federal agencies.

What You Can Do

Although City Health is not aware of any misuse of information at this time, individuals are encouraged to remain vigilant and take precautionary steps, including:

  • Monitoring explanation of benefits statements and medical records for unusual activity
  • Reviewing financial account statements and credit reports
  • Reporting any suspicious activity to healthcare providers, insurers, or financial institutions

For More Information

City Health has established a dedicated response line to answer questions about this incident. Individuals may contact:

Toll-Free Phone: (800) 283-0817
Email: [email protected]
Mailing Address: City Health, Attn: Privacy Office, 201 Dolores Avenue, San Leandro, CA 94577

This contact line will be available during regular business hours for at least 90 days following this notice.

City Health regrets any concern this incident may cause and remains committed to safeguarding the information entrusted to it.

Close
Search

Hit enter to search or ESC to close

cookie By using this website, you agree to our cookie policy. Close