Last Update: 04/05/2026 at 2:50 PM EST
Health Providers Settle Data Breaches
Coverage from The HIPAA Journal, Claim Depot, and others
Articles
9
Latest Article
02/16
Active Days
125
Executive Summary
Health providers agreed to class action settlements after breaches exposed patient data, with cash claims, monitoring, and loss reimbursement for affected individuals
- Centrelake Medical Group settled a 2019 ransomware case affecting 197661 patients after servers were accessed for weeks
- Des Moines Orthopaedic Surgeons settled a 2023 breach that stole protected health data for 307864 patients
- Continuum Health Alliance settled over an October 2023 incident affecting more than 377000 patients of Consensus Medical Group
- EMSA settled a 2024 cyberattack case involving 611743 individuals and created a 1.5 million dollar fund
- Compassion Health Care settled a 2025 breach affecting 23600 people with claims capped at 600000 dollars
- Aln Medical Management agreed to a 4 million dollar settlement over a March 2024 data incident
- The settlements offer cash payments, reimbursement for documented losses, and credit or medical monitoring services
Quick Facts
- What: Settled class actions over patient data breaches and cyberattacks
- Where: California Iowa New Jersey Oklahoma and North Carolina
- Why: Unauthorized access exposed Social Security numbers and medical information
- Who: Multiple health care providers and medical data service firms
- When: Breaches occurred from 2019 through 2025 with 2026 deadlines
Coverage Timeline: 125 Days
Featured Article
Centrelake Medical Group and Des Moines Orthopaedic Surgeons settled class actions in 2019 and 2023 US health data breaches, offering monitoring and capped reimbursements.
Additional Articles
⭐⭐⭐⭐⭐
Heritage Provider Network, Regal Medical Group, and affiliates agreed in California state court to a preliminarily approved $49.995 million settlement resolving class actions over a December 2022 healthcare data breach.
⭐⭐⭐
Veradigm settles 2024 data breach case in Illinois federal court, funding 10.5 million for affected patients.
Continuum Health Alliance settles data breach case in New Jersey over October 2023 incident.
Emergency Medical Services Authority (Oklahoma) and Compassion Health Care (North Carolina) reached class-action settlements in 2024-2025 data breach cases affecting hundreds of thousands of patients.
Aln Medical Management LLC settles a March 2024 data incident class action in the United States with a four million dollar payout.
Former Nuance employee accessed Geisinger patient records in November 2023 in Pennsylvania; a 5 million class action settlement was approved in March 2026.
⭐️⭐️
Murfreesboro Medical Clinic in Tennessee faced a 2023 ransomware breach; a class action settlement received preliminary approval in September 2025 to provide cash payments and two years of credit monitoring to affected patients and employees.
Community First Medical Center in Chicago reached a 1 million dollar class action settlement for a July 12 2023 data breach.