Already filed claims for the Retina Group of Washington data breach or secured reimbursement from the NSC data breach settlement? Sparrow’s followers know we transform security-breach frustration into fast cash and free protections. Today we’re focusing on healthcare again: AllCare Plus Pharmacy—with locations in Massachusetts and New Hampshire—has agreed to settle claims that a June 2022 cyberattack exposed patient data. If your Social Security number, prescription history, or financial info was caught in that breach, this settlement could pay you up to $5,000 or provide two years of premium credit monitoring. Below, we unpack how the breach happened, who qualifies, potential payouts, key deadlines, and why Sparrow’s claim concierge turns paperwork into peace of mind.
Background of the AllCare Plus Pharmacy Data Breach Settlement
When prescriptions meet data exploitation
Pharmacies sit at the nexus of health and finance, storing everything from prescription histories to billing addresses. On June 22, 2022, cybercriminals allegedly infiltrated AllCare Plus Pharmacy’s network, accessing files packed with personally identifiable information (PII) and protected health information (PHI). For weeks, intruders reportedly moved laterally inside systems before exfiltrating sensitive data, including:
- Names, addresses, and dates of birth
- Social Security and driver’s license numbers
- Financial account details
- Prescription and treatment records
- Health insurance policy information
Affected customers didn’t learn of the breach until late September 2022, when AllCare mailed notification letters. Some victims soon reported fraudulent credit-card charges and unauthorized medical billing. Consumer advocates blasted the delay, noting attackers had ample time to monetize stolen data on the dark web.
By December 2022, several patients filed suit in Suffolk County Superior Court (MA), alleging AllCare failed to employ industry-standard cybersecurity: outdated firewalls, unpatched servers, and no multi-factor authentication for remote access. Plaintiffs also argued the pharmacy violated HIPAA’s Security Rule and Massachusetts data-protection statutes by storing PHI in unencrypted form.
After months of mediation, AllCare Plus Pharmacy LLC agreed to a confidential monetary settlement—structured to cover both small nuisance losses (e.g., bank fees) and life-altering identity theft. The deal, preliminarily approved in April 2025, requires AllCare to adopt enhanced safeguards, including endpoint detection, employee phishing training, and annual penetration testing.
This lawsuit echoes a broader trend: healthcare data breaches jumped 58 percent in 2023, according to HHS. Settlements like AllCare’s underscore that breached entities must do more than offer 12-month credit monitoring—they must compensate victims for lasting harm.
Who’s Eligible for the Settlement
You’re a class member if your data was compromised in the June 2022 AllCare Plus Pharmacy breach. Look for a mailed or emailed notice, or check eligibility via the settlement website’s lookup tool.
Hint: If you filled a prescription at an AllCare location in MA or NH in 2022, you’re likely included.
How Much You Can Get
| Benefit | Maximum Amount | Notes |
|---|---|---|
| Out-of-pocket losses | Up to $750 | Covers unreimbursed fraud charges, overdraft fees, professional fix-it services, credit monitoring expenses, etc. |
| Extraordinary losses | Up to $5,000 | Must be directly linked to breach-related identity theft (e.g., tax-refund fraud, new-account loans). Requires documentation. |
| Lost time reimbursement | $20/hour × 5 hours (max $100) | Document time spent freezing credit, talking to banks, or filing police reports. |
| Credit-monitoring & ID theft protection | 2 years via IDX | Includes $1 million insurance, dark-web monitoring, and 24/7 recovery services. |
| Alternative cash payment | $50 | Choose this if you skip credit monitoring and have no loss claims. |
Awards may be reduced pro rata if claims exceed the undisclosed fund.
Proof Requirements
Gather these before filing:
- Breach notice letter or proof of AllCare relationship (Rx label, statements).
- Receipts or statements for fraud-related costs (bank letters, police reports, invoices).
- Documents showing identity-theft losses for extraordinary claims.
- Timesheets or notes for lost-time reimbursement.
No paperwork? Sparrow can help reconstruct evidence from bank portals and free credit reports.
How to File a Claim with Sparrow
Turn your losses into compensation in four easy steps:
- Confirm eligibility at AllcareSettlement.com or via mailed notice.
- Collect documents listed above.
- Visit our Sparrow Claim Assistance page and complete the brief intake form.
- Upload docs or flag gaps—our data-breach specialists will liaise with Atticus Administration to secure your benefits.
We’ll keep you updated in plain language—no legal or medical jargon.
Important Deadlines
| Action | Date |
|---|---|
| File claim / Opt out / Object | July 3, 2025 |
| Final approval hearing | August 27, 2025 |
Mark your calendar—late filings mean lost payouts.
Case Snapshot
- Case name: Celeste Brown, et al. v. AllCare Plus Pharmacy LLC, No. 2484CV02366 (Suffolk Cty. Super. Ct., MA)
- Settlement website: AllcareSettlement.com
- Claims Administrator: AllCare Settlement, c/o Atticus Administration, PO Box 64053, St. Paul, MN 55164
Email: AllCareSettlement@AtticusAdmin.com | Phone: 800-355-1535
Conclusion
Data breaches don’t just expose numbers—they expose lives. AllCare’s settlement offers real relief: cash for headaches, credit monitoring for peace of mind, and up to $5,000 for serious identity-theft fallout. But rights expire on July 3, 2025. Sparrow’s experts will craft a bulletproof claim so you don’t leave money—or security—on the table. Ready to safeguard your future? File with Sparrow today. For the latest on healthcare-sector settlements, browse our Class Action News and sign up for alerts—because protecting your data shouldn’t be another prescription you pay for out of pocket.
