Hill Files Multi-State Data Breach Lawsuit
Indiana Attorney General Curtis Hill.
Subscriber Benefit
As a subscriber you can listen to articles at work, in the car, or while you work out. Subscribe NowIndiana Attorney General Curtis Hill is leading a multi-state federal lawsuit against a Fort Wayne-based electronic health records company. Hill’s office alleges Medical Informatics Engineering Inc. and NoMoreClipboard LLC sustained a data breach which compromised the data of more than 3.9 million people.
According to the lawsuit, hackers infiltrated a web application called WebChart, which is run by MIE, between May 7 and May 26, 2015. The hackers stole electronic Protected Health Information, including names, phone numbers, mailing addresses, Social Security numbers, and usernames and passwords, among other types of information.
The lawsuit alleges that MIE violated provisions of the Health Insurance Portability and Accountability Act, along with state claims including Unfair and Deceptive Practice Laws, Notice of Data Breach statutes, and state Personal Information Protection Acts. Hill’s office says it is the first time state attorneys general have joined to pursue a HIPAA-related data breach case in federal court.
"We will always act to protect Hoosier consumers in cases such as this one," Hill said in a news release. "We make it our standard practice to pursue all penalties and remedies available under the law on behalf of our citizens, and we hope our proactive measures serve to motivate all companies doing business in Indiana to exercise the highest ethics and utmost diligence."
The lawsuit also involves the states of Arizona, Arkansas, Florida, Iowa, Kansas, Kentucky, Louisiana, Minnesota, Nebraska, North Carolina, and Wisconsin. You can read the entire complaint in the document below: