Saint Francis Health System

Saint Francis Health System operates as a healthcare provider in the United States, delivering hospital and medical services to patients and their families. The organization includes facilities such as Saint Francis Hospital and supports ancillary operations like a hospital gift shop that processes payment card transactions. It manages billing and invoicing for medical devices, handling related patient information as part of its revenue cycle activities. Its services are directed toward the general public seeking inpatient, outpatient, and related health care within its geographic service area.

As a health system, Saint Francis is subject to federal and state healthcare regulations governing patient data protection and financial transactions. The organization’s handling of protected health information was highlighted in a 2023 incident where a vulnerability in the MOVEit file transfer software was exploited, resulting in unauthorized access to limited patient data including names, dates of birth, medical record numbers, billing account numbers, and medical device details. Earlier incidents in 2016 and 2015 involved unauthorized access to web servers and a point‑of‑sale system, respectively, demonstrating exposure to threats across different technology environments. These events underscore the organization’s need to maintain robust cybersecurity controls while continuing to provide clinical and administrative services.

The source material does not disclose details about Saint Francis Health System’s ownership structure, parent company, or subsidiary relationships. Its headquarters is located in the United States of America, as indicated in the organization’s alias information. No further quantitative data regarding size, employee count, or geographic reach is provided in the available sources.