DOCS Dermatology Data Breach Impacts Sensitive Personal Info Including SSNs

On Jan. 26, 2026, Central States Dermatology Services, LLC (DOCS), announced that it experienced a data breach impacting sensitive patient and employee information.

The incident was first detected on Nov. 27, 2025, when the company identified suspicious activity within its network. After engaging third-party cybersecurity specialists to investigate, it was determined that unauthorized access to certain DOCS information occurred between approximately Nov. 19 and Nov. 27, 2025.

The breach exposed a wide range of personally identifiable information (PII) and protected health information (PHI). The specific data exposed varies by individual.

The information potentially compromised includes first and last names, addresses, email addresses, phone numbers, dates of birth, Social Security numbers, treatment and diagnosis details, prescription and medication information, dates of service, provider names, medical record numbers, patient account numbers, Medicare or Medicaid ID numbers, health insurance information and medical billing or claims data.

At this time, the exact number of affected individuals has not been released, and the company is still working with data specialists to review the impacted files and identify those whose information was involved.

DOCS has posted a notice of data incident via Morningstar.

Central States Dermatology Services's response

The company is also working with data specialists to conduct a thorough review of the compromised information and to determine which individuals were affected. Additionally, DOCS is implementing enhanced security measures and reviewing its data protection policies and procedures to prevent future incidents.

DOCS has encouraged individuals to remain vigilant for signs of identity theft or fraud. They recommend reviewing credit reports, account statements and explanation of benefits forms for suspicious activity.

Those affected may also consider placing a fraud alert or credit freeze with the major credit reporting agencies: TransUnion, Experian and Equifax.

The company has provided a dedicated phone line at 513-813-1488 and a mailing address at 9987 Carver Road, Suite 250, Blue Ash, OH 45242, for questions about the incident.