Optical-software maker Ocuco Inc. negligently failed to protect the personal information of nearly 241,000 people that was exposed in an April data breach, a proposed federal class action said.
Ocuco breached its duties under common law, contract law, industry standards, the Health Insurance Portability and Accountability Act, and the Federal Trade Commission Act to implement reasonable and adequate data-security measures and provide timely notice of the incident, the plaintiff alleged.
Information exposed in the breach included names, Social Security numbers, patient demographic data, medical information, diagnostic codes, and provider notes, according to a complaint filed Monday in the US District ...
Learn more about Bloomberg Law or Log In to keep reading:
See Breaking News in Context
Bloomberg Law provides trusted coverage of current events enhanced with legal analysis.
Already a subscriber?
Log in to keep reading or access research tools and resources.