DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

ClearBalance, Bricker & Eckler settle data breach lawsuits involving patient data

Posted on September 18, 2022 by Dissent

To follow up on two previously reported breaches involving protected health information, here are two class action settlements that involve business associates:

CSI Financial Services aka ClearBalance

In July 2021, DataBreaches reported a breach at CSI Financial Services, aka ClearBalance, a firm that services loans made by hospitals and providers to patients who need to finance medical expenses.  At the time, ClearBalance notified almost 210,000 patients whose protected health information (PHI) was in employee email accounts that had been accessed without authorization.

A class action lawsuit made all the usual claims — that the firm could have prevented the breach and that it should have notified people sooner.

Without admitting any wrongdoing, CSI Financial has agreed to a $2.65 million settlement deal to resolve these allegations. California residents will get more than residents of other states, and all may get two years of credit monitoring services.

The case is Ivo Kolar v. CSI Financial Services LLC, Case No. 37-2021-00030426, in the Superior Court for the State of California, County of San Diego.  The final hearing will be in January.

For more details see, ClearBalanceClassActionSettlement.com.

h/t, Top Class Actions

Bricker and Eckler

Bricker and Eckler is a law firm in Ohio. In April 2021, they notified HHS and announced a ransomware attack had impacted 420,532 individuals. Unsurprisingly, a lawsuit was filed that claimed that the law firm could have avoided the breach by having appropriate data security.

And like most defendants in such lawsuits these days, Bricker & Eckler hasn’t admitted any wrongdoing but decided to settle because of the cost of litigation. In this case, they have settled for $1.95 million class action settlement.

The case is In Re Southern Ohio Health Systems Data Breach Litigation, Case No. A2101886, in the Court of Common Pleas for Hamilton County, Ohio.  The final hearing is in November.

For more details, see  SouthernOhioHealthSystemDataBreachSettlement.com

h/t, Top Class Actions

Category: HackHealth DataMalwareSubcontractorU.S.

Post navigation

← NYSARC Columbia County Chapter discloses ransomware incident in July
Bosnia and Herzegovina investigating alleged ransomware attack on parliament →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • AMI Group – Travel & Tours notice of ransomware attack
  • Resource: Insider Threat reports
  • Za: Cyber extortionist sentenced to eight years in jail
  • ICE takes steps to deport the Australian hacker known as “DR32”
  • Hearing on the Federal Government and AI
  • Nigerian National Sentenced To More Than Five Years For Hacking, Fraud, And Identity Theft Scheme
  • Data breach of patient info ends in firing of Miami hospital employee
  • Texas DOT investigates breach of crash report records, sends notification letters
  • PowerSchool hacker pleads guilty, released on personal recognizance bond
  • Rewards for Justice offers $10M reward for info on RedLine developer or RedLine’s use by foreign governments

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Decision That Murdered Privacy
  • Hearing on the Federal Government and AI
  • California county accused of using drones to spy on residents
  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector
  • U.S. Enacts Take It Down Act

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.