California Confidentiality Of Medical Information Act

March 4, 2025 Dameron Hospital has agreed to pay a $650,000 settlement to resolve a class action over a 2023 data breach that compromised the personal information of 262,475 people.

January 24, 2025 Nonstop has agreed to pay a $1.6 million settlement to resolve a class action that alleged the insurer failed to protect the personal information of 8,500 people during a December 2022 data breach.

January 16, 2025 Hapy Bear Surgery Center has agreed to pay $607,500 to settle a class action filed over a data breach that targeted the dental clinic in December 2023.

December 13, 2024 Workit Health has agreed to pay a $578,680 settlement to resolve a class action that claimed the platform illegally shared users’ personal data with Google and Facebook.

December 10, 2024 A $25 million settlement has been reached to resolve a class action that alleged GoodRx illegally shared users’ private information with Facebook, Google and Criteo without consent.

November 12, 2024 A settlement has been reached to resolve a class action that alleged Oak Valley Hospital failed to prevent a 2023 data breach.

October 15, 2024 Mednax has agreed to pay $6 million to settle a proposed class action lawsuit filed over a June 2020 data breach that reportedly impacted 2.7 million people.

October 10, 2024 Disney faces a class action over a “massive” July 2024 data breach in which personal information belonging to staff members and guests was reportedly leaked.

May 16, 2024 Octapharma Plasma faces at least two proposed class action lawsuits over a 2024 data breach.

April 30, 2024 A class action accuses Banner Health of illegally sharing website visitors’ data with third parties, including Facebook and Google, without consent.

April 18, 2024 City of Hope has been hit with a class action over a 2023 cyberattack that compromised the private data of approximately 827,000 patients.

February 13, 2024 A class action claims San Diego Fertility Center Medical Group and Ivy Fertility have secretly disclosed website visitors’ private data to third parties without consent.

February 8, 2024 Keenan & Associates faces a class action over an August 2023 cyberattack that compromised the personal and medical data of more than 1,500,000 people.

January 19, 2024 HCP and an IT vendor face a class action over a cyberattack announced in April 2021 that compromised the private data of more than 293,000 people.

December 8, 2023 Scripps Health faces a class action over its alleged disclosure of website visitors’ private information to third parties, including Facebook and Google, without consent.

November 20, 2023 A class action accuses AltaMed Health Services Corporation of sharing the private health data of website visitors with third parties, including Facebook, without consent.

October 23, 2023 A class action claims Santa Clara Valley Medical Center secretly transmits the private data of website visitors to Facebook and other third parties without consent.

October 19, 2023 Prospect Medical Holdings, Inc. faces a class action that claims the healthcare corporation failed to protect private employee and patient data during an August 2023 cyberattack.

October 13, 2023 Quest Diagnostics and Optum360 face a class action in which a consumer claims the companies illegally shared his sensitive medical data with a third-party debt collector without authorization.

September 28, 2023 Amerita, Inc. faces a class action that claims the company failed to protect consumers’ personal information during a cyberattack reportedly discovered in March 2023.

August 8, 2023 A class action lawsuit claims dialysis services provider DaVita has unlawfully shared website visitors’ personal data with third parties, including Facebook, without consent.

June 29, 2023 Another proposed class action lawsuit claims negligence on the part of the Housing Authority of the City of Los Angeles (HACLA) is to blame for a data breach that went undetected for almost a full year.

June 16, 2023 A class action lawsuit claims negligence on the part of Apria Healthcare is to blame for a data breach that compromised the personal information of 1.8 million individuals nationwide.

June 1, 2023 A class action alleges Monument has illegally disclosed users’ information to third-party advertisers, including Meta, Google, Bing and Pinterest.

March 6, 2023 A class action lawsuit claims the negligence of four major healthcare networks in Southern California resulted in a “foreseeable” data breach that compromised the personal information of over three million patients.

February 24, 2023 A class action lawsuit alleges that Sharp Healthcare secretly transmits Sharp.com visitors’ personal data to Meta Platforms (Facebook) without consent.

February 13, 2023 A class action lawsuit claims the University of California San Francisco (UCSF) Medical Center secretly shares private patient data with Meta Platforms (Facebook) without consent.

February 7, 2023 A class action claims Cedars-Sinai Health System and subsidiary Cedars-Sinai Medical Center secretly transmit without consent and to numerous third parties the personal data of Cedars-Sinai.org visitors.

January 12, 2023 A class action claims that Sharp Healthcare, the foremost healthcare provider in San Diego and operator of Sharp.com, secretly transmits website visitors’ personal data to Facebook without consent.

January 9, 2023 A class action claims that MemorialCare Medical Group, operator of MemorialCare.org, secretly transmits website visitors’ personal data to Facebook without consent.

May 20, 2022 SuperCare Health, Inc. faces a class action over its apparent failure to safeguard the personal information of more than 318,000 current and former patients during a data breach last summer.

December 10, 2021 Planned Parenthood Los Angeles faces a class action that alleges an October 2021 data breach stemmed from the facility’s failure to secure patients’ highly sensitive information.

November 2, 2021 Rite Aid faces a lawsuit over a Feb. 2021 data breach during which the personal information of thousands of patients was reportedly exposed to unauthorized parties.

September 21, 2021 A class action has been filed over an alleged UC San Diego Health data breach in which hackers reportedly gained unauthorized access to employees’ email accounts.

September 14, 2021 A late-2020 data breach is the subject of a lawsuit filed against Neighborhood Healthcare, Health Center Partners of Southern California and Netgain Technology.

April 29, 2021 Google faces a class action centered on an alleged "security flaw" with the COVID-19 exposure notification system it helped develop.

January 29, 2021 Mednax, Inc. and Pediatrix Medical Group face a proposed class action over a June 2020 data breach that reportedly affected nearly 1.3 million patients.

January 22, 2021 Rady Children’s Hospital faces a class action over a data breach of third-party vendor Blackbaud’s systems that reportedly affected nearly 19,800 patients.

September 25, 2020 MedMark Services, Inc. failed to secure and protect patients’ personal information from a data breach discovered around November 2019, a proposed class action claims.

July 27, 2020 A class action claims Central Valley Meat Co. pressured employees sick with COVID-19 to continue coming to work, exacerbating an outbreak at its Hanford, Calif. facility.

April 3, 2020 Tandem Diabetes Care, Inc. faces a class action in the wake of a January 2020 security incident that reportedly exposed patients’ confidential medical information.