RIBridges

RIBridges is a technology system that administers state‑administered health and human services programs, including Medicaid, the Supplemental Nutrition Assistance Program (SNAP), and childcare assistance. It is managed by the vendor Deloitte, which provides the operational and technical support for the platform. The system serves individuals who are recipients or applicants of these benefit programs, facilitating the determination of eligibility and the distribution of assistance. Its headquarters is located in the United States of America.

The scope of RIBridges encompasses the delivery of essential public benefits to a broad population within the jurisdictions it serves. By handling multiple major assistance programs, the system plays a central role in the social safety net infrastructure. It processes significant volumes of personal data to verify eligibility and manage benefit disbursements. The platform’s design aims to integrate various state services into a unified digital interface.

A distinguishing attribute of RIBridges is its reliance on a major consulting firm, Deloitte, for system management, which brings specialized expertise in large‑scale government IT solutions. The system handles highly sensitive personally identifiable information, such as names, addresses, Social Security numbers, and banking details, making data protection a critical concern. Following the December 2024 cyberattack, federal and state law enforcement were notified, underscoring the system’s relevance to both state and national security interests. The establishment of a multilingual call center for affected individuals highlights its commitment to user support during incidents.

Structurally, RIBridges operates under the auspices of state health and human services agencies, with Deloitte acting as the managing vendor. This arrangement reflects a public‑private partnership model where the state retains program oversight while leveraging external technical capabilities. No explicit parent or subsidiary relationships are detailed in the available information, but the vendor management structure is clearly defined. The system’s alignment with state‑administered programs indicates its integration into governmental benefit delivery frameworks.

The December 2024 incident, which compromised personal data and necessitated taking the system offline for remediation, illustrates the critical nature of RIBridges’ operations and the response protocols in place. Remediation efforts included a multilingual call center, coordination with law enforcement, and plans to notify impacted households about credit monitoring services. These actions demonstrate the organization’s focus on mitigating harm and maintaining transparency with affected users. The ongoing analysis of the breach underscores the continued importance of safeguarding the data processed by the RIBridges platform.