On or about March 20, 2026, The Center for Hearing and Speech dba Texas Hearing Institute (“THI”) became aware of suspicious activity involving its computer systems. According to the Notice of Data Event, THI promptly took steps to secure its systems, engaged a third-party cybersecurity firm, and initiated an investigation to determine what occurred.
Following the initial investigation, THI confirmed on April 22, 2026, that certain personal information may have been impacted. The forensic review determined that unauthorized access to information within its network environment occurred prior to discovery. Because of the complexity of the data review, it was not until June 19, 2026, that THI identified affected individuals and determined there was sufficient information to issue notification letters.
After identifying the affected information, THI worked to resecure its network and implement additional safeguards and updated procedures to strengthen its security posture.
The Center for Hearing and Speech dba Texas Hearing Institute provides healthcare-related services, including hearing and speech evaluation and treatment services.
THI did not report confirmed misuse of the data at the time of notification, but confirmed that unauthorized access to personal information may have occurred.
Individuals whose information may have been involved began receiving written notification letters on June 26, 2026. If you received a Notice of Data Security Incident from THI, it confirms that your personal information may have been impacted.
As part of its response, THI is offering affected individuals complimentary credit monitoring services through Cyberscout for 24 months.
What information is involved in the Texas Hearing Institute Data Breach?
Compromised information may include:
First Name
Last Name
Other Personally Identifiable Information (PII)
The specific data elements vary by individual and are detailed in each notification letter sent by THI.
Your Personally Identifiable Information (PII) includes information that can be used to identify you. Healthcare organizations are required to safeguard this information. When exposed, it may increase the risk of identity theft or misuse.
Because this organization provides healthcare-related services, some of the information involved may also qualify as Protected Health Information (PHI), which is legally protected and may be misused if accessed without authorization.
If your information was involved, it is important to remain vigilant by monitoring accounts and reviewing any notices or statements carefully.
Patients and consumers may have legal rights when sensitive personal or healthcare information is not adequately protected.
If you received a Notice of Data Security Incident related to the Texas Hearing Institute incident, your personal information may be at risk.
Contact the Data Breach Attorneys at Emery | Reddy today for a Free Case Review.