Strauss Borrelli PLLC, a leading data breach law firm, is investigating WellLife Network Inc. (“WellLife”) regarding its recent data breach. The WellLife data breach may have involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.
ABOUT WELLLIFE NETWORK, INC.:
WellLife is a healthcare organization based in New York. Founded in 1980, WellLife provides a wide variety of personalized behavioral health services to individuals coping with the many challenges brought on by emotional problems and mental illness.3 These services include psychiatric rehabilitation; case management; consumer self-help; family and peer support; and residential services.3 Today, WellLife programs assist more than 5,500 people each year.3 Headquartered in New Hyde Park, New York, WellLife has more than 100 multi-service hubs, satellite offices, facilities, residences and off-site locations, and employs over 1,000 individuals.4
WHAT HAPPENED?
Recently, WellLife announced that it had experienced a data breach in which the sensitive personal identifiable information and protected health information in its systems may have been accessed and acquired. According to the breach notice, on September 7, 2023, WellLife identified suspicious activity within its network. As a result, WellLife launched an investigation to determine the nature of the incident.
Through its investigation, WellLife learned that sensitive personal information in its systems may have been viewed and taken by an unauthorized third-party between August 26, 2023, and September 7, 2023. As a result, WellLife began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Address
- Date of birth
- Birth/marriage certificate
- Driver’s license number
- Passport or other government-issued identification (potentially including state ID, military ID, tribal ID, or taxpayer identification number)
- Student ID
- Employee-assigned identification number
- Employer identification number
- Medical information (e.g., medical diagnosis/condition information, lab results, medications, and other treatment information)
- Health insurance information
- Medicare/Medicaid ID, Social Security insurance or disability insurance information
- Electronic/digital signature
- Surname/maiden name
- Financial condition information
On August 29, 2024, WellLife posted a notice of the incident on its website. Additionally, WellLife mailed data breach notification letters to impacted individuals. Based on the breach notice on its website, WellLife is providing affected individuals with a list of the specific type of sensitive information impacted and 24 months of complimentary credit monitoring services. A link to the form breach notification that WellLife posted to its website is below.
If you received a breach notification letter from WellLife Network, Inc.:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.