FlexCare LLC filed a data breach notice with the Vermont Attorney General on March 5, 2025, after discovering unauthorized access to an employee’s email account. This incident exposed sensitive consumer information, prompting FlexCare to notify those impacted. Upon detecting the breach in October 2024, FlexCare secured the compromised account and launched an investigation. The company then reviewed the exposed data to identify affected individuals, sending out notification letters to those whose data was compromised.
The breach was initially detected on October 9, 2024, when suspicious activity was found within an employee’s email account.
After securing the account, FlexCare conducted a thorough investigation to determine the cause of the breach. The company discovered that confidential consumer data, including emails and attachments, had been accessed by the unauthorized party. This prompted FlexCare to take immediate action to assess the scope of the breach and mitigate any further risks.
FlexCare continued its investigation, reviewing the compromised files to determine which consumer information had been exposed. Once the investigation was complete, the company sent out breach notification letters to the affected individuals. These letters outlined the specific information that was compromised and provided instructions on how individuals could protect themselves.
FlexCare ensured that the breach was communicated to those impacted in a timely and transparent manner.
FlexCare, LLC is a digital health provider that offers telemedicine, teledentistry, behavioral health, dermatology, and virtual primary care services. The company operates FlexCare Medical Staffing, which specializes in healthcare staffing services, including travel nursing and therapy placements. Based in Roseville, California, FlexCare has around 500 employees and generates $210 million in annual revenue. The company’s broad services in digital healthcare and staffing are vital to its operations and market presence.
Reference:
