Strauss Borrelli PLLC, a leading data breach law firm, is investigating Chiesi USA, Inc. (“Chiesi”) regarding its recent data breach. The Chiesi data breach involved sensitive personal information and protected health information belonging to over 1,800 individuals.
ABOUT CHIESI USA, INC.:
Chiesi is a specialty pharmaceutical company based in North Carolina. Founded in 1935, Chiesi specializes in developing and producing pharmaceutical treatments for rare diseases, specialized care (including neonatology and critical care), hospitals, and more.2,3,4 Headquartered in Cary, North Carolina, Chiesi employs over 360 individuals in the United States and is a subsidiary of Chiesi Farmaceutici, which is based in Parma , Italy and employs over 5,300 globally.3
WHAT HAPPENED?
Recently, Chiesi reported to the Attorney General of Maine that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice, on August 28, 2025, Chiesi learned of potential unauthorized access to its U.S.-based systems.1 As a result, Chiesi launched an investigation to determine the nature of the incident.
Through its investigation, Chiesi confirmed that sensitive personal information in its systems may have been accessed by an unauthorized third party during the breach. As a result, Chiesi began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:5
- Name
- Social Security number
- Driver’s license number
- Financial account information
- Medical records
On December 22, 2025, Chiesi began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to Maine residents, Chiesi is providing affected individuals with a list of the specific types of sensitive information impacted and 24 months of complimentary credit monitoring services. A link to the form breach notification letters that Chiesi filed with the Attorney General of Maine is below.
If you received a breach notification letter from Chiesi USA, Inc.:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
