Kaiser Permanente Data Breach– Class Action Investigation

Chimicles Schwartz Kriner & Donaldson-Smith is investigating a potential class action relating to a data breach incident involving Kaiser Permanente (“Kaiser”), one of the largest healthcare organizations in the country.  The conglomerate confirmed that millions of consumers had their information taken in a data breach incident according to a regulatory filing with the Department of Health and Human Services (HHS).

What Happened at Kaiser Permanente?

On April 26, 2024,  Kaiser confirmed that certain online technologies found on their system may have inadvertently sent personal information of an estimated 13.4 million current and former patients to other parties, including Google, Microsoft Bing, and X  (Twitter). Kaiser said the company shared data with advertisers that included IP addresses as well information that tracked members and watched how they interacted with and navigated through the website and mobile applications, and search terms used in the health encyclopedia.

HIPAA requires American companies to notify the U.S. Department of Health and Human Services (HHS) about any data breaches involving protected health information. The Kaiser data breach is the largest breach reported this year. Kaiser also notified California’s attorney general and said it will begin notifying impacted individuals about the breach.

If you believe your personal information may have been compromised as a result of this breach, please contact one of our data breach attorneys by filling-out the form provided below.

Kaiser Data Breach (#395)

(*) Indicates required field: When communicating with us through this site or otherwise in connection with a matter for which we do not already represent you, your communication may not be treated as privileged or confidential, and does not create an attorney-client relationship between you and our Firm.