Valley Mountain Regional Center Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Valley Mountain Regional Center (“VMRC”) regarding its recent data breach. The VMRC data breach involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.


VMRC is a system of healthcare centers based in California. Founded in 1974, VMRC serves children and adults with developmental disabilities in San Joaquin, Stanislaus, Amador, Calaveras, and Tuolumne counties.2 Today, VMRC offers free diagnosis and assessment services to any person suspected of having a developmental disability, such as an intellectual disability, cerebral palsy, epilepsy, or autism.2 Headquartered in Stockton, California, VMRC has two additional locations in California and employs over 200 individuals. 


On August 1, 2023, VMRC discovered that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its systems may have been accessed and acquired. Through its investigation, VMRC determined that an unauthorized actor may have accessed this sensitive information on or about July 29, 2023. On April 19, 2024, VMRC began notifying individuals whose information may have been impacted. The type of information potentially exposed includes:

  • Name
  • Social Security number
  • Date of birth
  • Driver’s license number
  • Taxpayer identification number
  • Username and password
  • Biometric data
  • Medical treatment and/or diagnosis information 
  • Health insurance information

If you are a current or former patient of, or have received a breach notification letter from, Valley Mountain Regional Center:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by the VMRC data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in any free credit monitoring services that may be provided by Valley Mountain Regional Center;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: