Medical Review Institute of America Data Breach Lawsuit

Consumer Protection Attorneys in California

On November 9, 2021, Medical Review Institute of America learned that they were the victim of a sophisticated cyber-attack. MRIoA immediately engaged third-party forensic and incident response experts to conduct a thorough investigation of the incident’s nature and scope and assist in the remediation efforts. MRIoA also contacted the FBI to inform them of the incident and seek guidance.

On November 12, 2021, Medical Review Institute of America discovered that the incident involved the unauthorized acquisition of information. The investigation into the cause of the incident is ongoing. Based on a comprehensive review, MRIoA discovered that your protected health information was included in the incident.

The types of protected health information potentially involved (only if this information was provided to MRIoA by the organization named above) are your demographic information (i.e., first and last name, gender, home address, phone number, email address, date of birth, and social security number); clinical information (i.e., medical history/diagnosis/ treatment, dates of service, lab test results, prescription information, provider name, medical account number, or anything similar in your medical file and/or record); and financial information (i.e., health insurance policy and group plan number, group plan provider, claim information).

Notification letters have been sent to all affected patients.


While identity thieves are becoming more sophisticated at breaking through the data protection of businesses, it is the company’s responsibility to provide the highest level of security for their consumers. This is especially true when medical information is involved. Medical information of the type lost here, is given special protection under California law.

(858) 293-4614 Call now to review your case with our Data Breach intake specialist. During this call, our intake specialist will review your claim regarding the Medical Review Institute of America Lawsuit. 

*HIPAA and CMIA Violations – You may be entitled to damages or other remedies. If you received notice that your information was stolen due to a data breach incident, contact Potter Handy, LLP to join our class action lawsuit. No out-of-pocket expenses from you.

View example of what the letter looks like. If you received this letter contact our Law Firm.


What Information Was Involved?

The types of protected health information potentially involved (only if this information was provided to MRIoA by the organization named above) are your demographic information, clinical information and financial information:

  • First and last name
  • Gender
  • Home address
  • Phone number
  • Email address
  • Bate of birth
  • Social security number
  • Medical history
  • Diagnosis
  • Treatment
  • Dates of service
  • Lab test results
  • Prescription information
  • Provider name
  • Medical account number, or anything similar in your medical file and/or record
  • Health insurance policy
  • Group plan number
  • Group plan provider
  • Claim information

Notification letters have been sent to all affected patients.


Medical Review Institute of America Lawsuit – Contact Our California Data Breach Lawyers

Have you received notice that your information was stolen due to a data breach incident? If so, you may be entitled to damages or other remedies.

Every day, insurance companies and health care providers lose protected medical information through careless acts, such as emailing third parties’ medical information or sending your personal information to third parties without any encryption or protection.

Our attorneys at Potter Handy, LLP have been instrumental in protecting privacy rights.

(858) 293-4614 Call now to review your case with our Data Breach intake specialist. During this call, our intake specialist will review your claim regarding the Medical Review Institute of America Lawsuit.