An Arizona-based pharmacy for hospice care didn’t properly safeguard nearly 800,000 people’s private health data ahead of an August breach, a proposed class action said.
OnePoint Patient Care’s negligence enabled a third party to access and acquire customers’ unencrypted personal information, according to a complaint filed Thursday in the US District Court for the District of Arizona. The suit seeks punitive and statutory damages.
OnePoint learned on Aug. 15 that, from Aug. 6 to Aug. 8, someone had obtained customers’ data without authorization, the company said in a notice published on its website on Oct. 14.
The exposed data includes …