Almost 30,000 Patients’ Sensitive Information Compromised by Data Breach

If you are a current or former patient of People Incorporated Mental Health Services (PIMHS), you may have been negatively affected by a recent data breach.

Between April 28 and May 4th of this year, one or more email accounts of the Minnesota-based healthcare provider was illegally accessed by a third-party. PIMHS has admitted that an email security data breach exposed sensitive patient records and financial data.  The data breach exposed personal and protected information of about 27,500 people.  The illegally accessed information included names, dates of birth, addresses, treatment information, insurance information, medical record numbers, Social Security numbers, financial account information, health insurance information and driver’s license or state identification numbers.

Patients are required to share their personal and sensitive information to obtain medical treatment.  In turn, healthcare providers, such as PIMHS owe a duty to protect that information.  However, PIMHS failed to do so when it allowed cybercriminals to access patients’ sensitive information and waited approximately five months before notifying them of the breach.  During this time, patients’ sensitive information has been exposed to cybercriminals and may soon be, it not already, fraudulently used. Attorneys at Finkelstein, Blankinship, Frei-Pearson & Garber, LLP have successfully recovered millions of dollars on behalf of data breach victims.  We are currently investigating this matter, as well as other data breaches.  If you believe that your information may have been unlawfully accessed, please contact us to discover your legal options