Home
>
Data Breach>Mental Health Association

Mental Health Association Data Breach Exposes Patient Data

Published
April 1, 2025
Updated
June 10, 2025
Mental Health Association Data Breach Exposes Patient Data
Mental Health Association
Types of INFORMATION affected
  • Names
    Names
  • Social security numbers
    Social Security Numbers
  • Dates of birth
    Dates of Birth
  • Addresses
    Addresses
  • Government IDs
    Government IDs
  • Medical Information
    Medical Info
  • Financial Info
    Financial Info

Affected by the

Mental Health Association

data breach?

Join the Lawsuit

It's free to join. 

Mental Health Association Inc. (MHA), an organization serving individuals affected by mental illness, developmental disabilities, brain injuries, substance use, and homelessness, has experienced a data breach. The data incident was discovered on December 2, 2024 and may have compromised both personally identifiable information (PII) and protected health information (PHI).

The breach was reported to the Massachusetts, Maine, and New Hampshire Attorney Generals' offices starting on May 30, 2025. According to these disclosures, the cybersecurity incident has affected 12,633 individuals in Massachusetts along with 51 and 11 individuals in New Hampshire and Maine, respectively.

The types of personal and protected health information potentially exposed may include name, address, Social Security number, medical diagnosis/condition, medication, medical record number, other medical information, date of birth and driver’s license number. MHA also posted a Notice of Data Security Incident on its own website.

Mental Health Association's response

Upon discovering the incident, MHA launched an investigation and is offering affected individuals 24 months of free credit monitoring and identity theft services through Haystack.

If you believe your personal and protected health information may have been compromised in this data breach, you can take the following steps:

  • Sign up for the Haystack credit monitoring and identity protection services offered by MHA.
  • Review your account statements and explanation of benefits forms for suspicious activity.
  • Monitor your credit reports for any unauthorized accounts or changes.
  • Consider placing a fraud alert or credit freeze with the major credit bureaus.

Mental Health Association has also established a dedicated, toll-free call center. Individuals with questions or concerns about the incident can contact the call center Monday through Friday from 9:00 am to 9:00 pm Eastern Time at 855-260-8288.

For more information about MHA’s services, visit the Mental Health Association website.

Notice Letter

This browser does not support inline PDFs. Please download the PDF to view it: Download PDF

Sources

Disclosures

Breach Summary

Affected Entity
Mental Health Association
Consumers Notification date
Date of Breach
Breach Discovered Date
December 22, 2025
Total People Affected
12633
Information Types Exposed
  • Address
  • Date of Birth
  • Driver's License Number
  • Drivers Licenses
  • Financial Account
  • Medical Diagnosis/Condition
  • Medical Record Number
  • Medical Records
  • Medication
  • Name
  • Social Security Number

-

Data Breach Settlements

DG3 North America $600,000 Data Breach Settlement
Waterford Country School $400,000 Data Breach Settlement
Gramercy Surgery Center $400K Data Breach Settlement
Houser LLP $1.3 Million Data Breach Class Action Settlement
Evolve Bank & Trust $11.9M Data Breach Settlement
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image

What to Read Next

Columbia University Data Breach Impacts Core Systems
July 2, 2025
Columbia University Data Breach Impacts Core Systems
Bronx Pro Group Ransomware Attack Exposes Tenant Info
July 2, 2025
Bronx Pro Group Ransomware Attack Exposes Tenant Info
Bridges EXP Data Breach Exposes Personal Information
July 2, 2025
Bridges EXP Data Breach Exposes Personal Information
CRC Insurance Data Breach Affects 1,701 Texans
July 2, 2025
CRC Insurance Data Breach Affects 1,701 Texans