TTEC Services Corp. Facing Another Class Action Over 2021 Data Breach
by Erin Shaak
Barocas v. TTEC Services Corporation
Filed: February 9, 2022 ◆§ 2:22-cv-00217
A class action alleges TTEC failed to take adequate steps to protect customers’ and employees’ information from unauthorized access prior to a data breach.
A proposed class action lawsuit alleges TTEC Services Corporation failed to take adequate steps to protect customers’ and employees’ information from unauthorized access prior to a data breach last year.
The 37-page case centers on a months-long 2021 data breach during which unauthorized actors gained access to files containing sensitive consumer information. According to the suit, the compromised information included current and former employees’ and customers’ names, dates of birth, healthcare ID and Social Security numbers, and medical record information.
The lawsuit claims TTEC “disregarded the rights” of those who entrusted the customer experience technology and services provider with their private information, and failed to properly safeguard the data so as to prevent it from being compromised.
TTEC notified current and former employees and customers in December 2021 that it had detected unauthorized activity on its network earlier in the year between late March and September, the suit relays. Per the complaint, TTEC has yet to disclose the root cause of the breach, the vulnerabilities exploited by hackers or the steps it has taken to prevent a similar incident from occurring in the future.
The case contends that the breach was a result of TTEC’s failure to employ reasonable cybersecurity procedures and practices, such as encrypting its data or deleting information that is no longer needed. Moreover, although the U.S. government, U.S. Cybersecurity & Infrastructure Security Agency and Microsoft Threat Protection Intelligence Team have all recommended measures to help prevent security breaches, the defendant nevertheless failed to implement one or more of those methods as a way to safeguard employee and customer data, according to the suit.
“Defendant could have prevented this Data Breach by properly securing and encrypting the files and file servers containing the [personally identifiable information] of Plaintiff and Class Members,” the complaint charges. “Alternatively, Defendant could have destroyed the data, especially data from former employees.”
Further, the lawsuit argues that although TTEC stated it would provide data breach victims with 12 months of identity monitoring services, this offer is “wholly inadequate” to compensate those whose information was compromised, given victims now face “years of constant surveillance” of their financial and personal accounts.
“As a result of the Data Breach, [the plaintiff, a former TTEC employee,] is at a present risk and will continue to be at increased risk of identity theft and fraud for years to come,” the complaint attests.
The lawsuit looks to represent anyone in the U.S. whose personally identifiable information was compromised in the data breach announced by TTEC Services Corporation around December 8, 2021.
Get class action lawsuit news sent to your inbox – sign up for ClassAction.org’s newsletter here.
Hair Relaxer Lawsuits
Women who developed ovarian or uterine cancer after using hair relaxers such as Dark & Lovely and Motions may now have an opportunity to take legal action.
Read more here: Hair Relaxer Cancer Lawsuits
How Do I Join a Class Action Lawsuit?
Did you know there's usually nothing you need to do to join, sign up for, or add your name to new class action lawsuits when they're initially filed?
Read more here: How Do I Join a Class Action Lawsuit?
Stay Current
Sign Up For
Our Newsletter
New cases and investigations, settlement deadlines, and news straight to your inbox.
Before commenting, please review our comment policy.