Data Breach

The Phia Group Data Breach Investigation

If you were affected by the The Phia Group, LLC data breach, you may be entitled to compensation.
Updated on
February 9, 2026
Published on
October 16, 2025
The Phia Group Data Breach Investigation
The Phia Group Data Breach Investigation
Submit Claim

Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the Phia Group, LLC data breach.

If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.

About The Phia Group

The Phia Group is a healthcare cost containment company based in Canton, Massachusetts. Founded in 2000, the company helps self-funded health plans and employers reduce healthcare costs.

Their services include consulting on health plan cost control, drafting and reviewing plan documents, subrogation and overpayment recovery, claim negotiation and plan defense. The Phia Group works primarily with self-funded healthcare plans, offering legal, consulting and technology services designed to protect plan assets and ensure regulatory compliance.

What happened?

On Oct. 11, 2025, The Phia Group disclosed a data breach to the Massachusetts Attorney General's office. In the following months, the breach was also disclosed to the attorneys general offices of California, New Hampshire, Oregon, Texas, and Washington. According to the disclosures, the cybersecurity incident compromised both personal and protected health information.

The breach has impacted 40,366 individuals nationwide. Of those affected, 29,403 residents of Texas, 2,803 of Washington, 23 of Massachusetts, and 13 of New Hampshire have been affected.

The company began notifying affected individuals by mail in Oct. 2025.

Possible Exposed Information

  • Name
  • Address
  • Date of birth
  • Social Security number
  • Driver's license or State ID number
  • Health insurance account member number
  • Health insurance group number
  • Medical diagnosis information
  • Medical record number (MRN)
  • Medical treatment/procedure information
  • Medicare number
  • Patient account number (PAN)
  • Treatment location
  • Financial account information

You May Be Entitled to Compensation

If your Social Security number or medical records were exposed in The Phia Group data breach, you may be entitled to compensation. Lawyers are ready to help people affected by this breach pursue possible claims.

To find out if you qualify and to join a potential lawsuit, complete the form below.

Sources

SUBMIT YOUR CLAIM TO THE LAW FIRM HANDLING THIS INVESTIGATION

Home
Investigations
The Phia Group Data Breach Investigation