CareTracker, Inc. Data Breach Affects Patient PII & PHI

Between June 15 and June 19, 2025, CareTracker, a practice management software provider, experienced a data breach exposing personal and protected health data of patients. The breach was disclosed to the U.S. Department of Health and Human Services on Aug. 18, 2025 and the California Attorney General's office on Nov. 12, 2025.

CareTracker doing business as Amazing Charts, recently disclosed unusual activity was identified on one of its networks managed by a third-party provider. The incident exposed sensitive personal information of at least 501 patients whose information was managed by Genaro C. Fernandez, MD. The total number of patients and medical practices impacted by the cybersecurity incident has not been publicly released.

Compromised information included names, medical information and health insurance information. The exposure of both PII and PHI, puts individuals at risk for identity theft and medical fraud. The company is notifying impacted individuals by mail.

CareTracker dba Amazing Charts' response

After detecting the data breach, CareTracker took steps to investigate and secure the third-party service provider’s environment. In addition to the required state and federal disclosures, the company is offering 12-months of free Experian IdentityWorks support to all impacted individuals, which includes access to credit reports, credit scores, and real-time credit change alerts.

If you receive notification from CareTracker dba Amazing Charts about this breach, you may want to:

• Sign up for the free credit monitoring services, offered by the company.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

For affected individuals with questions, CareTracker has set up a call center at 833-931-5511, Monday through Friday, 8 a.m. to 8 p.m. CT.