Medical Marijuana Data Breach Investigation

Migliaccio & Rathod LLP is currently investigating a data breach affecting medicinal marijuana dispensaries and their customers across the country. Privacy researchers at VPNMentor discovered, in December 2019, a data breach in THSuite, an Enterprise Resource Planning (ERP) software for cannabis dispensaries. VPNMentor reports over 30,000 records with sensitive personal information were exposed in the breach, which has since been closed. Although VPNMentor identifies only three dispensaries affected by the breach (Amedicanna Dispensary, Bloom Medicinals, and Colorado Grow Company), they note that most files fell outside the scope of their research and many more dispensaries were affected than those specifically named. Personal information exposed by the breach includes, but is not limited to:

  • Full Names
  • Phone Numbers
  • Dates of Birth
  • Medical ID Numbers
  • Signatures
  • Gram Limits
  • Sales Figures

Are you concerned that you may be a medical marijuana customer whose data has been breached?

If so, we would like to speak with you. Please complete the contact form on this page, send us an email at [email protected], or give us a call at (202) 470-3520 for more information.

Committed to Consumer Protection

The lawyers at Migliaccio & Rathod LLP have years of experience in class action litigation against large corporations, including in cases involving defective products. More information about our current cases and investigations is available on our blog.