.png)
Trusteed Plans Services Corporation Data Breach Investigation
Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the Trusteed Plans Service Corporation data breach.
If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.
About Trusteed Plans Service Corporation
Trusteed Plans Service Corporation (TPSC Benefits) is a third-party administrator based in Tacoma, Washington. The company has been in business since 1963 and specializes in managing employee benefit plans, particularly for associations, trusts, chambers of commerce and employers that use self-funded health plans.
TPSC’s core services include the administration of employee benefits, consolidated billing and custom health benefit solutions. The company provides tailored benefit management services, especially for organizations in the Pacific Northwest.
What happened?
On Dec. 26, 2024, Trusteed Plans Service Corporation discovered suspicious activity within its internal computer systems. An investigation revealed that an unauthorized actor had gained access to TPSC’s environment and obtained personal information from within its network. A review was completed on Aug. 7, 2025 and determined that both personally identifiable information (PII) and protected health information (PHI) of 19,775 people were compromised in the data breach.
names, addresses, dates birth, Social Security numbers, health insurance information, medical treatment information, medical diagnosis information, medical procedure information, Medicare/Medicaid numbers
Information Exposed:
- Name
- Address
- Date of Birth
- Social Security number
- Health insurance information
- Medical treatment information
- Medical diagnosis information
- Medical procedure information
- Medicare and/or Medicaid number
The data breach was also disclosed to the California, Maine, Montana, Massachusetts, Washington and Oregon Attorney Generals' offices on Sept. 15, 2025. Impacted individuals includes 13,659 Washington residents, 112 Montana residents, 10 in Massachusetts and four in Maine.
The incident was also disclosed to the U.S. Department of Health and Human Services on Sept. 17, 2025 and the New Hampshire Attorney General on Sept. 22, 2025.
Your Rights and Next Steps
If you received a notice from TPSC about this data breach, it is important to know your rights and take steps to protect yourself. You may be entitled to seek compensation for any harm or inconvenience caused by this cybersecurity incident.
- Cyber Monitoring services: Enroll in the 12 free months of HaystackID cyber monitoring services, provided by the company. Individuals have 90 days from the receipt of their letter to sign up.
- Monitor your accounts carefully: Check your financial statements regularly for suspicious activity or unauthorized transactions. If you notice anything unusual, contact your financial institution immediately.
- Fraud alert and credit reports: A fraud alert informs creditors to take extra steps to verify your identity before opening new accounts in your name. Consumers are also entitled to one free credit report annually from each credit bureau. You can request a fraud alert or a credit report by contacting any one of the three major credit bureaus.
- Seek legal help: Lawyers are ready to help you understand your rights and pursue compensation.
You May Be Entitled to Compensation
If your information was compromised in the Trusteed Plans Service Corporation data breach, you may be entitled to compensation, which could include reimbursement for out-of-pocket expenses, time spent addressing the breach, or payment for emotional distress. Lawyers are ready to help individuals affected by this incident pursue claims for damages related to the breach.
To find out if you qualify and to join a potential lawsuit, complete the form below.
.svg)