Top Class Actions’s website and social media posts use affiliate links. If you make a purchase using such links, we may receive a commission, but it will not result in any additional charges to you. Please review our Affiliate Link Disclosure for more information.
CorrectCare data breach overview:
- Who: Three incarcerated men are suing a medical claims facilitator.
- Why: The plaintiffs say the company was negligent and allowed a data breach that exposed their private information.
- Where: The CorrectCare data breach lawsuit was filed in a Georgia federal court.
- What are my options: NortonLifeLock carries cybersecurity options for those affected by data breaches.
Three men incarcerated in the Georgia Department of Corrections are suing a medical claims facilitator after it suffered a data breach, exposing their private health information.
Plaintiffs Anthony Oliver, Reginald Priddy, and Anthony Williams filed the class action lawsuit against CorrectCare Integrated Health LLC on March 19 in a Georgia federal court, alleging violations of state and federal laws.
CorrectCare is a vendor that works with various customers in the prison industry to facilitate access to medical providers and to manage the claims payment process, the lawsuit states. As a result, CorrectCare is entrusted with peoples’ highly sensitive information.
According to the lawsuit, CorrectCare’s negligence allowed a recent data breach. The private health information (PHI) exposed in the breach allegedly included names, dates of birth, Social Security Numbers and certain “limited health information” such as diagnosis codes.
“The Data Breach was a direct result of CorrectCare’s failure to implement adequate and reasonable cybersecurity procedures and protocols necessary to protect consumers’ PHI,” the lawsuit states.
CorrectCare delayed telling affected parties, lawsuit alleges
CorrectCare allegedly acknowledged that it first became aware of the exposure of information stores on its web server to the public on July 6, 2022, but only recently began contacting affected people.
“Since the Data Breach, Plaintiffs have had numerous accounts breached, including their bank account, consumer credit cards, consumer accounts, and have now been placed in collections from various debt collectors who have posted consumer debts on the Plaintiffs ‘ credit trade lines,” the lawsuit states.
“Likewise, third-party scammers have used their personal information to try and obtain lines of credit for credit cards and loans.”
CorrectCare has confirmed with the Department of Health and Human Services’ Office for Civil Rights that at a minimum, the PHI of almost 1,500,000 individuals had been exposed overall, the lawsuit states.
The plaintiffs are suing on behalf of all Georgia inmates whose private health information was exposed in the breach. They are suing for negligence, breach of implied contract, invasion of privacy, breach of fiduciary duty and unjust enrichment.
The plaintiffs seek certification of the class action, damages, fees, costs, 10 years of credit monitoring services for the class, and a jury trial.
Meanwhile, Google Fi, Pepsi Bottling Ventures, Reddit, Weee! and the U.S. Marshals Service have recently disclosed or confirmed data breaches, while Activision Blizzard has been accused of recently suffering a data breach. Click here for more information.
What do you think of the allegations against CorrectCare? Let us know in the comments!
The plaintiffs are represented by McNeill Stokes.
The CorrectCare class action lawsuit is Anthony Oliver, et al. v. CorrectCare-Integrated Health LLC, Case No. 1:23-cv-01168-AT in the U.S. District Court for the Northern District of Georgia.
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements: