Menu
Browse

Roper St. Francis Healthcare

Aliases: 3 aliases
Primary URL Location Industry
www[.]roperstfrancis[.]com
Country United States of America
Healthcare Icon
Healthcare
Profile

Roper St. Francis Healthcare functions as a healthcare provider that operates hospital facilities and delivers a range of medical services to patients. Its offerings include inpatient care, outpatient clinics, diagnostic imaging, laboratory services, and specialized treatment programs. The organization also maintains affiliated medical practices, such as Milestone Family Medicine, which provide primary care services. In addition to clinical activities, Roper St. Francis engages in fundraising initiatives that are administered through third‑party vendors, and it relies on employee email systems to communicate internally and with patients. These email accounts have been identified as a vector for security incidents involving unauthorized access to patient information.

Security incidents reported for the organization reveal the volume of sensitive data it handles. In June 2020, an unauthorized actor gained access to an employee’s email account over a multi‑day period, compromising the personal and medical information of roughly 6,000 patients, including names, birth dates, Social Security numbers, insurance details and comprehensive medical records. Shortly before that, in February 2020, a breach of a third‑party vendor’s fundraising database potentially exposed names, ages, genders, birthdates, addresses, treatment dates, service departments and treating physicians for nearly 93,000 individuals, although financial data and Social Security numbers remained encrypted. An earlier incident in January 2019 at the Milestone Family Medicine practice involved unauthorized access to systems that held names, dates of birth, Social Security numbers, addresses, health insurance details, health insurance details and treatment‑related information. Upon discovering each event, the organization secured the affected systems, launched investigations with third‑party forensic assistance, notified impacted individuals, established toll‑free call centers or dedicated hotlines for questions, and, where Social Security numbers were exposed, offered complimentary credit monitoring and identity protection services.

Distinguishing features of Roper St. Francis Healthcare include its linkage to a broader health‑system network; the Milestone Family Medicine practice is explicitly noted as being affiliated with Bon Secours St. Francis Health System, indicating a relationship with a larger organizational entity. The provider’s approach to incident response has emphasized strengthening its technology management and security oversight after each breach, reviewing third‑party data storage practices, and reassessing vendor relationships. While the source material does not disclose explicit ownership or parent‑subsidiary details for Roper St. Francis Healthcare itself, the described affiliation of one of its practices points to an existing connection within the healthcare sector. These factors collectively shape the organization’s profile as a patient‑focused healthcare provider that manages substantial amounts of protected health information and continually adapts its security posture in response to emerging threats.

Incidents
Linked incidents available to members
4 incidents