Omaha, NE – Heritage Holdings LP (“Heritage”) has become aware of a data security incident that may have affected certain individuals’ information.
On or around September 16, 2025, Heritage experienced a network intrusion that affected a limited number of systems. Upon discovery, Heritage took immediate action to secure our network and investigate the event. This included engaging a third-party team of forensic experts to investigate the incident and determine the full nature and scope of the event. Following a thorough investigation, Heritage has confirmed that a limited amount of protected health information may have been subject to unauthorized access in connection with this incident.
Although the forensic investigation could not rule out the possibility that an unknown actor may have accessed this information, there is no indication whatsoever that any information has been misused at this time. The type of information contained within the affected data included first and last name, in combination with one or more of the following: date of birth, Social Security number, driver’s license or state ID number, financial account or payment card information, tax ID number, passport number, biometric information, medical information, treatment location, and health insurance information. Importantly, the information potentially impacted may vary for each individual, and may include all, or just one of the above-listed types of information.
Heritage has promptly notified potentially affected individuals as quickly as possible via U.S. mail to their most recent address on file. In an abundance of caution, Heritage has provided potentially impacted individuals with complimentary credit monitoring services. Additionally, in response to this incident, Heritage has implemented additional security measures within its network and facilities and is reviewing its current policies and procedures related to data security. Although Heritage has no evidence of actual misuse of information as a result of this incident, patients are nonetheless encouraged to monitor their account statements and explanation of benefits forms for suspicious activity and to detect errors. Patients may also wish to contact the three major credit agencies to place a fraud alert on their credit report – the credit agencies’ contact information is: Equifax (888-378-4329); TransUnion (833-395-6938); and Experian (888-397-3472).
Individuals can further educate themselves regarding identity theft, fraud alerts, credit freezes, and steps to protect their personal information by contacting the credit reporting bureaus, the Federal Trade Commission (“FTC”), or their state Attorney General. The FTC may be reached at 600 Pennsylvania Ave. NW, Washington, D.C. 20580; www.identitytheft.gov; 1-877-ID-THEFT (1-877-438-4338); and TTY: 1-866-653-4261. Instances of known or suspected identity theft should also be reported to law enforcement, your state Attorney General, and the FTC.
Heritage has established a toll-free call center to answer questions about the incident and to address related concerns. The call center is available Monday through Friday from 9 AM – 9 PM Eastern Time and can be reached at 1-833-318-9125. You may also contact us by writing to 16934 Frances St., Suite 200, Omaha, Nebraska 68130.
/PRNewswire — Feb. 27, 2026/
SOURCE Heritage Holdings
