On March 18, 2024, Andor Labs filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering that information that had been entrusted to the company was subject to unauthorized access. In this notice, Andor Labs explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information. Upon completing its investigation, Andor Labs began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from Andor Labs, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Andor Labs data breach. For more information, please see our recent piece on the topic here.

What Caused the Andor Labs Data Breach?

The Andor Labs data breach was only recently announced, and more information is expected in the near future. However, at this early stage, Andor Labs doesn’t appear to have issued a press release or posted a website notice discussing the breach, and the company’s filing with the U.S. Department of Health and Human Services Office for Civil Rights provides only limited information on what led up to the breach.

Once Andor Labs determined sensitive consumer data was accessible to an unauthorized party, Andor Labs reviewed the compromised files to determine what information was leaked and which consumers were impacted. While there is no indication about the type of data that was compromised because the company filed with the HHS-OCR, it likely involved consumers’ protected health information. This is because only those breaches affecting the protected health information of more than 500 people must be reported to the HHS-OCR.

On March 18, 2024, Andor Labs notified the HHS-OCR about the breach. Often, the date on the HHS-OCR website is the same as on the data breach letter; however, that is not always the case. Regardless, victims should expect that Andor Labs will soon send out data breach letters to anyone who was affected by the recent data security incident, if the company has not already. These letters should provide victims with a list of what information belonging to them was compromised.

More Information About Andor Labs

Andor Labs is a full-service laboratory located in Morrisville, North Carolina. Andor Labs offers healthcare providers a range of lab services, including oral and urine toxicology screening, infectious disease testing, general chemistry, COVID-19 testing and endocrinology. Andor Labs serves primary care physicians, nursing homes, long-term care facilities, specialists, addiction treatment facilities, mental health facilities, substance abuse clinics, transportation and construction companies, staffing agencies, and hospitals. Andor Labs employs more than 477 people and generates approximately $5 million in annual revenue.