OneTouchPoint, Inc. Data Breach Investigation

Migliaccio & Rathod LLP is currently investigating the Hartland, Wisconsin-based OneTouchPoint, Inc. (“OTP”), a printing and mailing company that provides services to various healthcare providers, for failing to safeguard sensitive patient information in a data breach that occurred in April of 2022.  The incident occurred when the company discovered suspicious activity on its systems.  An investigation into the attack found that an unauthorized actor had gained access to files that contained patient names, member ID numbers, and information provided during patients’ health assessments.

Some of the affected healthcare practices affected by the data breach at OTP include:

  • Anthem Affiliated Covered Entities
  • Common Ground Healthcare Cooperative
  • Banner Medicare Advantage Dual
  • Blue Cross Blue Shield of Arizona
  • MediSun, Inc. d/b/a Blue Cross Blue Shield of Arizona Advantage
  • Health Choice Arizona, Inc
  • Blue Cross Blue Shield of Massachusetts
  • Blue Cross Blue Shield of Rhode Island
  • Blue Cross Blue Shield of South Carolina Commercial
  • BMC HealthNet Plan / Well Sense Health Plan
  • CareFirst Advantage
  • Commonwealth Care Alliance
  • ElderPlan/HomeFirst
  • EmblemHealth Plan, Inc.
  • Florida Blue
  • Geisinger
  • Health Alliance Plan of Michigan
  • HAP Midwest Health Plan
  • Health First
  • Health New England
  • Health Plan of San Mateo
  • HealthPartners
  • Highmark Health
  • Humana
  • Kaiser Permanente
  • KS Plan Administrators, LLC
  • MVP Health Care
  • Pacific Source
  • Premera Blue Cross Medicare Advantage Plans
  • Prime Time Health Plan
  • Point32Health
  • Regence BlueCross BlueShield of Oregon
  • Regence BlueCross BlueShield of Utah
  • Regence BlueShield
  • Regence BlueShield of Idaho, Inc.
  • UPMC Health Plan
  • Matrix Medical Network

Although OTP investigated the incident and began sending notification letters to affected individuals, the company noted that the breach occurred in April of 2022.  Due to the lapse in time between the breach and the company’s notice to affected practices, hackers may have already been able to acquire and sell sensitive patient information such as social security numbers.  In previous data breaches, victims of data theft have been forced to spend money on credit monitoring services or other fraudulent charges.  Some individuals affected by the data breach may have noticed one or more of the following types of fraudulent activity related to their healthcare information: suspicious credit card charges, requests for government services or loans, medical procedures ordered without patient consent, and/or disrupted use of a patient portal.

Have you recently received a data breach notification letter from OneTouchPoint, Inc.?

If so, we would like to hear from you.  Please complete the contact form on this page, send us an email at [email protected], or give us a call at (202) 470-3520.

The lawyers at Migliaccio & Rathod LLP have years of experience in class action litigation against large corporations, including in cases involving data breaches.  More information about our current cases and investigations is available on our blog.