Bell Ambulance, Inc. Data Breach

On March 9, 2026, Bell Ambulance, Inc. (“Bell”), a Milwaukee‑based emergency medical services provider, issued official notification that it had experienced a cybersecurity incident impacting sensitive personal information of patients. According to Bell, an unauthorized individual accessed data within its computer network, prompting an extensive forensic investigation and multi‑stage notification process.

Bell first detected suspicious activity on February 13, 2025, immediately retaining third‑party specialists to determine the scope of the breach. The investigation confirmed unauthorized access, and Bell began reviewing affected systems to understand what information was involved and which individuals were impacted. Notifications were sent in phases: the first on April 18, 2025, then an additional round on January 15, 2026, with the full review completed on February 20, 2026.

Bell Ambulance, founded in 197, is one of Wisconsin’s largest private ambulance providers, operating 13 locations in Milwaukee, Waukesha, Racine, and Kenosha counties with 750+ employees. It specializes in ALS and critical care, handling over 140,000 calls annually using advanced equipment like Zoll X-Series monitors.

The compromised data includes Personally Identifiable Information (PII), which may significantly elevate risks of identity theft, fraud, and financial harm.

If you received a Data Breach Notification Letter from Bell Ambulance, it confirms that your information was involved in the incident and may have been accessed by an unauthorized party.

What information is involved in the Bell Ambulance Data Breach?

Compromised information may include:

Bell Ambulance maintains sensitive patient‑related information due to its role as an EMS provider. Compromised personal data may expose victims to identity theft, fraud, medical identity theft, or unauthorized use of financial or government‑issued identifiers.

Following the incident, Bell implemented security measures including password resets, account security enhancements, and a comprehensive investigation. Bell is offering 12 or 24 months of complimentary credit monitoring and identity protection services through IDX. Affected individuals must activate these services using their Enrollment Code.

Your Personally Identifiable Information (PII) includes details that can uniquely identify you. When compromised, this information can be used by cybercriminals to commit identity theft, fraud, or other misuse.

Protected Health Information (PHI) involves medical‑related data and is strictly regulated under federal and state law. PHI can be combined with other PII to commit medical identity theft, a type of fraud that can be extremely difficult to detect and resolve.

Bell advises all impacted individuals to remain vigilant by monitoring financial activity, insurance claims, and credit reports for signs of misuse.

If your data is exposed, criminals may use it to open fraudulent accounts, file false tax returns, access medical services under your name, or commit other forms of fraud. Prompt enrollment in identity monitoring services is strongly recommended.

Residents of California also have enhanced privacy rights under the California Consumer Privacy Act (CCPA) and additional protections under the Confidentiality of Medical Information Act (CMIA).

If you received a NOTICE OF DATA BREACH letter from Bell Ambulance, your personal information may be at risk and could be misused for identity theft or fraud.

Contact the Data Breach Attorneys at Emery | Reddy today for a Free Case Review.