Posted On May 10, 2023 Consumer Privacy & Data Breaches
May 10 – After discovering that sensitive information belonging to more than 25,000 people had been exposed in a security incident earlier this year, ASAS Health, LLC (ASAS) filed a notification of data breach with the Attorney General of Maine on May 8, 2023. According to the company’s report, the breach exposed the names, addresses, Social Security numbers, birthdates, driver’s license information, financial information, and protected health information of consumers. After it was determined that consumer information had been compromised, ASAS immediately started notifying those whose personal information had been compromised.
Data breach lawyers at Console & Associates, P.C. are now focusing on the ASAS Health data breach. If you have received a notice of a data breach and want to know what steps you can take to protect yourself and if you may be entitled to financial compensation from ASAS, you may schedule a free consultation with us.
ASAS Health, LLC is an internal medicine-focused healthcare provider with a staff of around seven MDs, three NPs, and a chiropractor. Internal medicine is ASAS Health’s forte. ASAS Health, which has its headquarters in Edinburg, Texas, now employs more than 27 people and brings in over $6 million in yearly sales.
On March 9, 2023, ASAS discovered unusual behavior in its computer system, as detailed in a report filed with the Attorney General of Maine. An inquiry by the corporation found that an unknown party had acquired access to the company’s computer system. After discovering the illegal access, ASAS immediately started working with a team of cybersecurity specialists to determine the full extent of the problem.
According to ASAS’ findings, unauthorized users accessed certain corporate data over the network. It was also discovered that the unauthorized entity gained access to files containing sensitive information about consumers.
After learning that private customer information had fallen into the wrong hands, ASAS Health launched a thorough investigation of the compromised files to ascertain what data had been exposed and who had been affected. Your name, address, Social Security number, birthday, driver’s license information, financial information, and protected health information may have been compromised; however, the specific data compromised may vary from person to person.
Data breach notifications were sent out by ASAS Health on May 8, 2023 to everyone whose data was exposed.
As a consumer, you likely have no qualms about sharing your personal information with ASAS Health. The release of this information casts doubt on the reliability of ASAS to keep your data secure. The company must use extreme caution and security while dealing with personal information.
If you have received notification that you were a victim of the data breach, you may be able to pursue a lawsuit against ASAS and seek financial compensation.
The consumer privacy lawyers at Console & Associates, P.C. help customers affected by data and security breaches pursue legal solutions by offering free consultations. By explaining your rights in clear, concise terms, we help you make an informed decision about your next steps. If you are a victim of the ASAS Health, LLC data breach, Console & Associates, P.C. will investigate at no charge to you and offer advice on how to proceed. If you decide to pursue a case, rest assured that we don’t get paid unless you do. If your claim is successful, legal fees are either paid out of the funds recovered or by the defendant. If your claim is not successful, you pay nothing.
Below is a portion of the letter sent to affected individuals:
We are sending this letter to you as part of ASAS Health’s continuing commitment to the privacy of your personal, sensitive, and protected health information. On March 9, 2023 we became aware that your (or someone you make medical decisions for) personal information may have been compromised. Please see below for more detailed information.
What Happened? On March 9, 2023, ASAS Health became aware of suspicious activity within its network and discovered that there had been unauthorized access into the network. Upon discovering this unauthorized access, ASAS Health took immediate steps to ensure its network was secure, engaged the services of cyber security experts, and reported the incident to law enforcement agencies, including the Federal Bureau of Investigation. While we continue to investigate the incident, ASAS Health took multiple steps to lessen the possibility of harm arising from the incident including immediately implementing its cyber security incident protocols and engaging the services of cyber security experts. We cannot definitively determine whether and what information was actually accessed or subsequently compromised, however, in an abundance of caution, we are providing you with this Notice and the services identified below.
What Information Was Involved? We are not currently able to identify the specific information accessed or compromised, if at all. The general types of information that might have been involved include:
Date of birth
Driver’s license number
Medicare ID number
Health Plan Carrier Information
What We Are Doing: To protect you and other patients from future breaches of personal, sensitive, and protected health information, we continue to refine our security protocols and maintain a robust information security system. Additionally, we have sent this Notice to you along with the resources and services described below. ASAS Health will also fully cooperate with any law enforcement investigation.