Visiting Nurse Association of Texas Data Breach

On or around July 17, 2025, Visiting Nurse Association of Texas (“VNA”) identified suspicious activity within its network environment. Upon discovery of the incident, VNA immediately took steps to secure its systems and launched an investigation with the assistance of third‑party forensic specialists to determine the nature and scope of the incident.

Following the investigation, VNA determined that an unauthorized actor gained access to certain employee email accounts. As a result, information contained within those email accounts may have been accessed. A comprehensive and time‑consuming review of the potentially impacted email data was initiated to determine the type of information involved and the individuals to whom that information relates.

VNA reported that once the review process is completed, potentially impacted individuals will be notified as soon as possible. VNA also implemented additional technical safeguards to further enhance the security of information in its possession and to prevent similar incidents from occurring in the future.

Visiting Nurse Association of Texas is a nonprofit healthcare organization established in 1934 that provides home healthcare, hospice, palliative care, and Meals on Wheels services to over 5,000 seniors throughout North Texas.

The impacted data may relate to individuals whose personal or health‑related information was contained within VNA employee email accounts.

If you received a Data Breach or Privacy Incident notification from Visiting Nurse Association of Texas, it confirms that your personal information may have been accessed by an unauthorized party during this incident.

What information is involved in the Visiting Nurse Association of Texas Data Breach?

Compromised information may include:

Your Personally Identifiable Information (PII) includes details that can be used to identify you. Organizations that collect and store this information are legally obligated to safeguard it. When healthcare organizations fail to adequately protect sensitive data, they may face legal liability and financial penalties.

Because VNA provides healthcare services, the incident may also involve Protected Health Information (PHI). PHI is protected under HIPAA and applicable state privacy laws. Exposure of PHI increases the risk of medical identity theft, insurance fraud, and unauthorized use of medical information.

When personal or medical information is exposed in a data breach or privacy incident, it can be used to commit identity theft, financial fraud, and medical fraud — often months or even years after the incident.

If your information may have been involved, one of the most effective steps you can take is to remain vigilant by reviewing credit reports, account statements, and explanation of benefits forms for suspicious activity.

Residents of California benefit from enhanced privacy protections under the California Consumer Privacy Act (CCPA), which provides additional rights related to the collection, storage, and protection of personal information. California residents may also have additional legal remedies when personal or medical data is compromised.

If you received a NOTICE OF PRIVACY INCIDENT letter from Visiting Nurse Association of Texas, your personal and medical information may be at risk. This type of sensitive information can be exploited by cybercriminals to commit fraud, identity theft, and related crimes.

Contact the Data Breach Lawyers at Emery | Reddy, PC for a Free Case Review today.