Walgreens Sends Letters Regarding Potential Compromise Of Patient Data Which Occurred Between May 26, 2020 And June 5, 2020

Kehoe Law Firm, P.C. is making consumers aware that Walgreens has sent letters to consumers regarding the potential compromise of certain customer information.

According to one of four sample breach notification letters Walgreens filed with the State of California Department of Justice, Office of the Attorney General:

[s]ometime between May 26 and June 5, 2020, various groups of individuals broke into multiple Walgreens stores and forced entry into the secured pharmacy at select locations, including your preferred Walgreens. Among the many items stolen were certain items containing health-related information —such as filled prescriptions waiting for customer pick up and paper records. This included a very limited number of hard drives that were attached to stolen cash registers. These hard drives contained information about certain recent pharmacy purchases completed at that cash register. One pharmacy automation device that stored prescription labeling information for a short time period was also involved.

Between May 26 and June 5, Walgreens discovered customer information was impacted. [Walgreens] later determined that one or more of the items described above may have contained your information. [Walgreens] wanted to alert [customers] to this fact. [Emphasis added.]

According to Walgreens, the compromised information may have included one or more of the following types of personal information: first and last name; address; telephone number; date of birth and/or age; clinical information (e.g., medication name, strength, quantity, and description); prescription number; prescriber name; health plan name and group number; vaccination information, including eligibility information; e-mail address; Balance Rewards Number; in addition to Photo ID Number- driver’s license, state ID, military ID, or passport (e.g., pseudoephedrine purchases). 

The sample breach notification letters Walgreens filed with the Office of the Attorney General can be viewed by clicking either Walgreens sample notification letter one, letter two, letter three or letter four

Have You Been Impacted by A Data Breach?

If so, please either contact Kehoe Law Firm, P.C., Michael Yarnoff, Esq., (215) 792-6676, Ext. 804, [email protected], complete the form on the right or e-mail [email protected] for a free, no-obligation case evaluation of your facts to determine whether your privacy rights have been violated and whether there is a basis for a data privacy class action.

Examples of the type of relief sought by data privacy class actions, include, but are not limited to, reimbursement of identity theft losses and of out-of-pocket costs paid by data breach victims for protective measures such as credit monitoring services, credit reports, and credit freezes; compensation for time spent responding to the breach; imposition of credit monitoring services and identity theft insurance, paid for by the defendant company; and improvements to the defendant company’s data security systems.

Data privacy class actions are brought on a contingent-fee basis; thus, plaintiffs and the class members do not pay out-of-pocket attorney’s fees or litigation costs.  Subject to court approval, attorney’s fees and litigation costs are derived from the recovery obtained for the class.

Kehoe Law Firm, P.C.