Twelve States File First Multistate Healthcare Data Breach Lawsuit

State Attorneys General from a dozen states have filed a lawsuit against several health IT companies, and their subsidiaries, alleging that poor security practices led to theft of protected health information (PHI) of 3.9 million individuals during a data security incident in 2015.

The 66-page complaint names four companies or subsidiaries, the state AGs allege that the companies failed to take “adequate and reasonable measures” to ensure their computer systems were protected. The lawsuit marks the first time state Attorneys General have joined together to pursue a HIPAA-related (Health Insurance Portability and Accountability Act) multistate data breach case in federal court.

Read more about the data breach lawsuit on Healthcare Informatics.