More Than One Million People Impacted by 2023 Nuance Communications Data Breach, Class Action Says
Salas v. Nuance Communications, Inc.
Filed: October 3, 2023 ◆§ 1:23-cv-12273
Nuance Communications faces a class action after the information of more than 1M people reportedly fell into the hands of hackers during a 2023 data breach.
Nuance Communications faces a proposed class action after the sensitive information of more than one million people reportedly fell into the hands of criminal hackers during a late-May 2023 data breach.
Want to stay in the loop on class actions that matter to you? Sign up for ClassAction.org’s free weekly newsletter here.
The 46-page case says that Nuance, which provides artificial intelligence (AI) solutions to clinicians, radiologists and care teams to document patient healthcare visits, was among the many organizations affected by the massive MOVEit file transfer service data breach earlier this year. Per the suit, MOVEit, a vendor for Nuance, was hacked between May 28 and May 29, yet Nuance did not begin to notify victims that their data was stolen until around September 22.
According to the lawsuit, information compromised in the Nuance data breach included individuals’ names, details of radiology studies, healthcare provider names, dates of service, Social Security numbers and other personal identifiers. The filing says that Nuance’s services are used by 77 percent of hospitals and 10,000 healthcare organizations around the globe.
“Nuance owed a non-delegable duty to Plaintiff and Class members to implement and maintain reasonable and adequate security measures to secure, protect, and safeguard their Private Information against unauthorized access and disclosure. It also had an obligation to ensure that any vendor or third party it selected to offload the sensitive information it was entrusted with would take reasonable measures to safeguard that data.”
The filing accuses Nuance of allowing proposed class members’ private data to be stored in an unencrypted form “despite the heightened sensitivity” of the information. Per the suit, Nuance “intentionally, willfully, recklessly, or negligently” failed to implement and maintain adequate cybersecurity measures to ensure consumers’ data remained secure.
“As a result, the Private Information of Plaintiff and Class members was compromised through disclosure to an unknown and unauthorized third party,” the case says. “Plaintiff and Class members have a continuing interest in ensuring that their information is and remains safe, and they should be entitled to injunctive and other equitable relief.”
The lawsuit looks to cover all persons whose personal and/or health information was compromised in the Nuance Communications data breach, including everyone who received notice of the incident.
Get class action lawsuit news sent to your inbox – sign up for ClassAction.org’s free weekly newsletter here.
Hair Relaxer Lawsuits
Women who developed ovarian or uterine cancer after using hair relaxers such as Dark & Lovely and Motions may now have an opportunity to take legal action.
Read more here: Hair Relaxer Cancer Lawsuits
How Do I Join a Class Action Lawsuit?
Did you know there's usually nothing you need to do to join, sign up for, or add your name to new class action lawsuits when they're initially filed?
Read more here: How Do I Join a Class Action Lawsuit?
Stay Current
Sign Up For
Our Newsletter
New cases and investigations, settlement deadlines, and news straight to your inbox.
Before commenting, please review our comment policy.