CPM is investigating a data breach at ConnectOnCall, a subsidiary of Phreesia that affected more than 900,000 people.  The company revealed that “On May 12, 2024, ConnectOnCall learned of an issue impacting ConnectOnCall and immediately began an investigation and took steps to secure the product and ensure the overall security of its environment. … ConnectOnCall’s investigation revealed that between February 16, 2024, and May 12, 2024, an unknown third party had access to ConnectOnCall and certain data within the application, including certain information in provider-patient communications.”  Importantly, ConnectOnCalll waited over six months before notifying its customers that their data was stolen, giving hackers and identity thieves a tremendous opportunity to sell and utilize this private information before customers could take any steps to protect their information and identity. The data that was compromised includes, information shared in communications between patients and their healthcare providers, such as names and phone numbers, medical record numbers, dates of birth, as well as information related to health conditions, treatments, or prescriptions, and, in a small number of cases, social security numbers.   

If your identity theft monitoring service has notified you that your information was included in the breach, or you have a received a notification from Phreesia or ConnectOnCall, you may be entitled to compensation. 

Companies like ConnectOnCall that handle consumers’ most sensitive information must do more to protect the valuable information entrusted to them. Consumers deserve to have their information protected and when mega corporations like Phreesia/ConnectOnCall fall short of their obligations, consumers are entitled to compensation. Cotchett, Pitre & McCarthy Partner, Thomas E. Loeser, is a former federal cyber-prosecutor specializing in hacking and data breach cases. If you received notice of the ConnectOnCall breach, please fill out the form below to make sure your rights are protected, and ConnectOnCall is held to account for its failure to protect your information.

New about the Phreesia/ConnectOnCall Data Breach

https://www.hipaajournal.com/connectoncall-data-breach/

https://www.securityweek.com/900000-people-impacted-by-connectoncall-data-breach/

https://optimhealthsystem.com/connectoncall-data-breach/

https://www.bleepingcomputer.com/news/security/connectoncall-breach-exposes-health-data-of-over-910-000-patients/

Key Contacts

Signal

Jump to Page

Cotchett, Pitre & McCarthy, LLP Cookie Preference Center

Your Privacy

When you visit our website, we use cookies on your browser to collect information. The information collected might relate to you, your preferences, or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. For more information about how we use Cookies, please see our Privacy Policy.

Strictly Necessary Cookies

Always Active

Necessary cookies enable core functionality such as security, network management, and accessibility. These cookies may only be disabled by changing your browser settings, but this may affect how the website functions.

Functional Cookies

Always Active

Some functions of the site require remembering user choices, for example your cookie preference, or keyword search highlighting. These do not store any personal information.

Form Submissions

Always Active

When submitting your data, for example on a contact form or event registration, a cookie might be used to monitor the state of your submission across pages.

Performance Cookies

Performance cookies help us improve our website by collecting and reporting information on its usage. We access and process information from these cookies at an aggregate level.

Powered by Firmseek