in Newswire Published on July 5, 2022

Yuma Regional Medical Center Hit with Class Action Over April 2022 Data Breach

by Erin Shaak

View Comments

Clarke et al. v. Yuma Regional Medical Center

Filed: July 1, 2022 § 2:22-cv-01115

Read Complaint

Yuma Regional Medical Center faces a class action over an April 2022 data breach that allegedly compromised current and former patients’ information.

Defendant(s)

Yuma Regional Medical Center

Law(s)

Health Insurance Portability and Accountability Act Arizona Consumer Fraud Act

State(s)

Arizona

Yuma Regional Medical Center faces a proposed class action over an April 2022 data breach that allegedly compromised the personal and health information of current and former patients.

The 39-page lawsuit claims the Yuma, Arizona-based healthcare provider failed to adequately secure patients’ personally identifiable and protected health information, which in turn allowed cybercriminals to infiltrate its system between April 21 and 25, 2022. As a result, current and former patients’ names, Social Security numbers, demographic details and medical information were exposed to unauthorized third parties, the suit says.

According to the case, Yuma Regional Medical Center has failed to meet data security standards set by the Health Insurance Portability and Accountability Act (HIPAA) and other state and federal statutes.

Per the lawsuit, those whose information was compromised in the incident now face a higher risk of identity theft, fraud and misuse of their sensitive data.

The suit says that although Yuma Regional Medical Center notified victims of the data breach in a letter dated June 9, 2022, patients remain “in the dark” concerning what data was stolen, what malware was used in the attack and what steps, if any, the defendant is taking to protect their information going forward.

“Representative Plaintiffs and Class Members are left to speculate as to the full impact of the Data Breach and how exactly Defendant intends to enhance its information security systems and monitoring capabilities so as to prevent further breaches,” the complaint reads.

The lawsuit argues that Yuma Regional Medical Center should have been aware of the risk of a data breach in light of recent high-profile cyberattacks within the healthcare industry. The defendant nevertheless failed to take appropriate steps to protect patients’ sensitive information, the suit alleges.

The case looks to represent anyone in the U.S. whose personally identifiable, protected health or financial information was exposed to unauthorized third parties as a result of the Yuma Regional Medical Center data breach that occurred between April 21 and 25, 2022. 

Get class action lawsuit news sent to your inbox – sign up for ClassAction.org’s newsletter here.

Case Spotlight

Camp Lejeune

Camp Lejeune residents may soon have the opportunity to claim compensation for harm suffered from contaminated water.

Read more here: Camp Lejeune Lawsuit Claims

ClassAction.org Newsletter

Stay Current

Sign Up For
Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This browser does not support PDFs. Please download the PDF to view it: Download PDF.
Open Document
Last Updated on July 5, 2022 — 4:24 PM

Erin Shaak

erin@classaction.org

Erin works primarily on ClassAction.org’s newswire, reporting on cases as they happen.

About ClassAction.org

ClassAction.org is a group of online professionals (designers, developers and writers) with years of experience in the legal industry.

Learn More

Before commenting, please review our comment policy.