.png)
American Associated Pharmacies (AAP) Data Breach Investigation
Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the American Associated Pharmacies (AAP) data breach.
If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.
About American Associated Pharmacies (AAP)
American Associated Pharmacies (AAP) is a member-owned cooperative established in 2009. It operates in the pharmaceutical industry, focusing on providing progressive and effective programs and services to independent pharmacies. AAP prides itself on offering fully customized solutions that allow pharmacy owners to remain in control. With approximately 85 employees, AAP is committed to supporting the profitability and independence of its member pharmacies. For more information, visit their website at rxaap.com.
October 2024 Data Breach
In October 2024, American Associated Pharmacies experienced a cybersecurity incident that potentially compromised sensitive personal information. On October 23, 2024, AAP detected suspicious activity and took immediate action to investigate and contain the situation.
AAP published a Notice of Data Incident on its own website and has notified impacted individuals by mail.
Information exposed:
- Name
- Address
- Date of birth
- Social Security number
- Passport number
- Driver's license or state ID number
- Bank or financial account number in combination with routing number
- Clinical or treatment information
- Medical information
- Medical provider name
- Medical record number
- Health insurance information
- Health insurance carrier
- Health insurance member ID and group number
- Prescription information
- Username and password
AAP has taken steps to enhance the security of its systems and is offering complimentary credit monitoring services for 24 months to affected individuals. The data breach was disclosed to the Massachusetts Attorney General in Dec. 2024 and subsequently to the Maine, California, Washington, New Hampshire and Vermont Attorney Generals' in Nov. 2025.
Your Rights and Next Steps
If you believe you were affected by this data breach, it's important to understand your rights and the steps you can take to protect yourself. AAP is offering free credit monitoring services through Experian IdentityWorks for 24 months. To enroll, visit Experian IdentityWorks before March 31, 2025, and use the activation code provided in the notification letter.
Additionally, you should remain vigilant by regularly reviewing your credit reports and account statements for any suspicious activity. Consider placing a fraud alert or security freeze on your credit reports to prevent unauthorized access.
You May Be Entitled to Compensation
If your personal information was compromised in the AAP data breach, you may be entitled to compensation. Lawyers are ready to help you understand your legal options and guide you through the process of joining a class action lawsuit. To explore your eligibility for compensation, complete the form below.
.svg)