March 20, 2023

Orlando Family Physicians (OFP) has reached a class action settlement to resolve claims stemming from a 2021 healthcare data breach. The breach resulted in the theft of over 447,000 patients’ names, Social Security numbers, and sensitive medical information from its servers.

Customers who received a data breach notification from Orlando Family Physicians on April 15, 2021, informing them that their personal information and/or protected health information may have been compromised in a data breach, will be compensated.

The breach occurred when an unauthorized person gained access to an OFP employee’s email account by obtaining the employee’s user ID and password via a phishing email. OFP took immediate action to contain the incident and launched an investigation to determine the scope of the incident.

According to the agreement, Orlando Family Physicians will reimburse affected patients who file a claim by July 1, as well as provide them with two years of free credit monitoring. Patients may receive up to $225 or $7,500 if their SSNs were stolen, depending on the type of private data stolen.

These people can also file a claim for up to three hours of lost time due to the security breach, at a rate of $25 per hour. Also, as part of the settlement, the physicians’ group denies any responsibility for the data heist.

Regardless of whether they suffered losses as a result of the data breach, all class members are eligible for two years of free credit monitoring and identity theft insurance through IDX. Exclusion and objection requests must be received by June 1, 2023.

The sources for this piece include an article in TheRegister.