The Lyon Firm Reaches $8.2 Million Settlement in Reventics Case
Reventics, a healthcare analytics and revenue cycle management company, has reached a settlement following a data breach that compromised sensitive patient and provider information. The settlement brings resolution to claims that the company failed to adequately safeguard protected health information (PHI), potentially violating privacy standards under federal law.
Joe Lyon served as co-lead counsel in this case, working alongside other prominent law firms across the country.
Background on Reventics and the Breach
Based in Colorado, Reventics partners with hospitals and healthcare systems nationwide to improve billing accuracy and physician documentation. Because its services require access to extensive patient data, the company stores sensitive details such as names, medical record numbers, service dates, insurance information, and diagnostic codes.
In December 2023, Reventics reported that it had discovered unauthorized access to parts of its computer network. The investigation determined that cybercriminals may have viewed or stolen files containing PHI and personally identifiable information (PII). Affected individuals were later notified, with the company offering complimentary credit monitoring and identity protection services.
The Reventics Data Breach Settlement
Following a number of class action lawsuits, Reventics agreed to settle allegations that it failed to maintain adequate cybersecurity defenses and timely inform patients of the breach. The settlement provides financial compensation to affected individuals and establishes stronger privacy and security protocols within the company.
Eligible class members may receive cash payments or reimbursement for documented out-of-pocket losses, such as expenses tied to identity theft prevention or fraudulent activity. The agreement also includes commitments from Reventics to enhance encryption standards, employee training, and breach response procedures to prevent similar incidents in the future.