Optical-software maker Ocuco Inc. negligently failed to protect the personal information of nearly 241,000 people that was exposed in an April data breach, a proposed federal class action said.
Ocuco breached its duties under common law, contract law, industry standards, the Health Insurance Portability and Accountability Act, and the Federal Trade Commission Act to implement reasonable and adequate data-security measures and provide timely notice of the incident, the plaintiff alleged.
Information exposed in the breach included names, Social Security numbers, patient demographic data, medical information, diagnostic codes, and provider notes, according to a complaint filed Monday in the US District ...
Learn more about Bloomberg Law or Log In to keep reading:
Learn About Bloomberg Law
AI-powered legal analytics, workflow tools and premium legal & business news.
Already a subscriber?
Log in to keep reading or access research tools.