Skip to main content

Panorama Eyecare Data Breach Investigation

The Lyon Firm is reviewing new data breach claims related to the data security incident reported at Panorama Eyecare, a clinic based in Colorado. If you receive a data breach notification letter from Panorama regarding this data leak, contact our legal team to discuss filing a class action claim or to learn more about how to protect your personal data in the future. We offer free data theft consultations and have experience with a wide range of data privacy issues.

 What Happened at Panorama Eyecare?

Last summer, a ransomware group claimed to have exfiltrated 798 GB of Panorama Eyecare data. The company has now (finally) confirmed the attack, a full year after the breach was detected. According to sources, the Panorama Eyecare ransomware attack allegedly compromised the sensitive personal identifiable information (PII) and certain protected health information (PHI) of over 377,000 individuals.

Panorama Eyecare has determined that the personal identifiable information and protected health information in its systems may have been accessed or acquired between May 22, 2023, and June 4, 2023. On June 5, 2024, Panorama Eyecare started notifying individuals whose data may have been compromised. The following type of information could be impacted:

  • Name
  • Social Security number
  • Driver’s license or state ID number
  • Date of birth
  • Financial account information
  • Medical provider

Panorama Eyecare is an eyecare management services organization operating out of Fort Collins, Colorado. The company partners with Eye Center of Northern Colorado, Panorama Lasik, Denver Eye Surgeons, Cheyenne Eye Clinic & Surgery Center, Evergreen Vision Clinic, P.C., Haas Vision Center, Windsor Eye Care & Vision Center, Arvada Vision & Eye Clinic.

Our data breach lawyers are currently involved in numerous data breach cases, and we represent plaintiffs in all fifty states. Call for a free case review and consultation, to discuss possible legal action. We believe that any entity that collects and stores our personal data has a duty to protect it to the best of their ability. Should any company fail to build and maintain a reasonably secure network, and a data breach occurs, they may be in violation of data privacy law.