A data security breach affecting millions of patients has led to four lawsuits over the past week.
Hackers obtained data for more than 11 million patients within the HCA Healthcare system, according to reports.
The data leak, which came from an external storage location, has resulted in four class-action lawsuits in a Tennessee district court, filed last Wednesday and Friday.
Among the plaintiffs are patients who argue that HCA Healthcare’s inability to protect their information now leaves them open to identify theft and other security concerns.
One of the largest hospital firms in the country, HCA Healthcare also has been acquiring several aging services-related assets over the past few years, including a majority stake in home health, hospice and therapy business of the largest senior living company in America, Brookdale Senior Living.
Although the data leaked included information on patients’ names, contact info and appointments, clinical information and payment details were not disclosed, HCA said in a statement last week.
When asked about the lawsuits, an HCA spokesperson declined to comment on Tuesday beyond the initial statement.
As of last week, the company has not identified any malicious activity on its networks, and it has promised to provide support to victims, including credit monitoring and identity protection services, if necessary.
“HCA Healthcare believes the privacy of its patients is a vital part of its mission and remains committed to maintaining the security of their personal information,” the company said in a statement.
Security issues are becoming a more frequent concern as companies attempt to streamline their databases.
This is not the first controversy HCA has been embroiled in this year. Last month, the company was accused of improperly transferring patients to hospice care, in part, to affect data on in-hospital deaths, McKnight’s Home Care reported.
Another widespread data breach among aging services providers occurred earlier this year when Miami-based Independent Living Systems reported compromised information on more than 4 million elderly and disabled individuals.
