CCRM

CCRM Dallas-Fort Worth operates as a healthcare provider within the United States. The organization delivers medical services to patients, as evidenced by the types of personal information it handles. Patient data managed by the organization includes names, addresses, email addresses, health details, insurance information, and medical history. In the course of providing care, CCRM Dallas-Fort Worth maintains electronic communications that can contain sensitive patient information. The organization’s activities involve interactions with patients that generate records requiring protection under healthcare privacy standards. Its role as a healthcare provider places it within the broader sector of medical service delivery in the Dallas‑Fort Worth area.

In October 2018, CCRM Dallas‑Fort Worth experienced a security incident when an unknown third party gained unauthorized access to a former employee's email account. The breach potentially exposed patient information such as names, addresses, email addresses, health details, insurance data, and medical history, with limited exposure of Social Security and driver's license numbers. The organization detected the incident after patients reported receiving spam emails from the compromised account. Upon discovery, CCRM Dallas‑Fort Worth promptly deactivated the affected account and launched an investigation. Although no evidence confirmed that the accessed data was viewed or misused, the organization notified all potentially affected individuals. To support those impacted, CCRM Dallas‑Fort Worth established a dedicated call center and implemented enhanced security measures to prevent similar incidents.