.png)
One Community Health Data Breach Investigation
Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the One Community Health data breach.
If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.
About One Community Health
One Community Health is a nonprofit, federally qualified health center based in Sacramento, California founded in 1989.
Originally focusing on addressing the HIV/AIDS crisis as the Center for AIDS Research, Education and Services (CARES), the organization expanded its services to provide comprehensive primary and preventive care for individuals of all ages, backgrounds and abilities to pay.
What Happened?
In October 2025, One Community Health discovered that a data security incident involving its business partner, TriZetto Provider Solutions, may have exposed sensitive patient information. TriZetto, which processes insurance eligibility and claims for the health center, detected suspicious activity within a web portal used by healthcare providers.
An investigation by external cybersecurity experts and law enforcement revealed that, between November 2024 and Oct. 2, 2025, an unauthorized individual accessed certain historical eligibility transaction reports stored on TriZetto’s systems. 4
One Community Health posted a detailed notice of the data security incident on its website on December 19, 2025. Impacted individuals were notified by mail.
According to the HHS report on Jan. 2, 2026, this breach has affected 4,309 individuals. The breach was also reported to the California Attorney General on Jan. 8, 2026.
Possible Information Exposed:
- Names of patients and primary insureds
- Address
- Date of birth
- Social Security number
- Health insurance member number (in some cases, Medicare beneficiary number)
- Health insurer name
- Information about the primary insured or beneficiary
- Other demographic health and health insurance information
Your Rights and Next Steps
If you received a notice about this data breach, it is important to understand your rights and the actions you can take.
First, TriZetto is offering complimentary credit monitoring, fraud consultation and identity theft restoration services through Kroll at no cost to affected individuals. These services are designed to help detect and address any potential misuse of your information.
Affected individuals will receive a separate notification from TriZetto with instructions on how to enroll in these services.
In the meantime, it is recommended to:
- Review account statements regularly
- Monitor free credit reports for suspicious activity or errors
- Check Explanation of Benefits statements from health insurers for any services not received
You also have the right to place a fraud alert or security freeze on your credit file by contacting any of the three major credit reporting agencies: Equifax, Experian or TransUnion.
These measures can help prevent new accounts from being opened in your name without your authorization.
You May Be Entitled to Compensation
If your information was exposed in the One Community Health data breach, you may be entitled to compensation. Lawyers are ready to help affected individuals understand their rights and pursue legal action if appropriate.
Completing the below form is the first step to find out if you qualify to join a lawsuit and seek compensation for any harm suffered as a result of this incident.
.svg)