A class action lawsuit has been filed against Reventics, a Colorado-based medical software company, alleging that the company failed to adequately protect and safeguard personally identifiable information (PII) and protected health information (PHI) of its customers. The plaintiffs allege that Reventics discovered a data breach on or around December 15, 2022, but failed to notify its customers until late February 2023.
The lawsuit alleges that Reventics failed to satisfy its obligations as a covered entity under the Health Insurance Portability and Accountability Act (HIPAA) and to maintain “reasonable and appropriate data security” under the Federal Trade Commission Act (FTC Act).
The plaintiffs seek to represent a class of all individuals whose PII or PHI was compromised in the data breach. They are seeking damages, including the cost of credit monitoring and identity theft protection, as well as injunctive relief to prevent Reventics from committing future data breaches.
Reventics has denied the allegations in the lawsuit and has said that it is committed to protecting the privacy and security of its customers’ data. The company has also said that it is cooperating with the authorities in their investigation of the data breach.
The lawsuit is still in its early stages and it is unclear how long it will take to resolve. However, the outcome of the case could have a significant impact on Reventics and its customers.
If you are a Reventics customer and you are concerned about the data breach, you should contact your healthcare provider to determine if your information was compromised. You should also take steps to protect yourself from identity theft, such as monitoring your credit report and freezing your credit report.
You can also contact the attorneys representing the plaintiffs in the class action lawsuit to learn more about your rights and options.