Hillcrest Convalescent Center Agrees to Settle Data Breach Class Action

Case Overview: Hillcrest Convalescent Center has agreed to settle a class action lawsuit stemming from a data breach that allegedly exposed the personal information of patients at the Durham, North Carolina rehabilitation and skilled nursing facility.

Who Qualifies: Current and former patients of Hillcrest Convalescent Center whose personal information may have been compromised in the data breach.

Estimated Payout: Specific per-claimant amounts have not been publicly disclosed; compensation will depend on the total settlement fund and number of valid claims filed.

Deadline: Check the official settlement website for claim filing deadlines.

Hillcrest Convalescent Center Agrees to Settle Data Breach Class Action

Hillcrest Convalescent Center agreed to settle a data breach class action. Durham, NC patients may be eligible for compensation. Check your eligibility now.

Hillcrest Convalescent Center Agrees to Settle Data Breach Class Action

Patients of Hillcrest Convalescent Center, a short-term inpatient rehabilitation and skilled nursing facility in Durham, North Carolina, may be eligible for compensation under a proposed class action settlement following a data breach that allegedly exposed their personal information.

According to reporting from the HIPAA Journal, Hillcrest Convalescent Center has agreed to resolve class action litigation tied to the breach. The settlement, if approved by the court, would provide affected individuals with an opportunity to seek compensation for harms they may have suffered as a result of the incident.

What You Could Receive

The settlement may provide eligible claimants with financial compensation, though specific per-person payout amounts have not been publicly confirmed at this time. As is typical in data breach settlements, the amount any individual claimant may receive will depend on factors including the total size of the settlement fund, the number of valid claims submitted, and whether a claimant can document out-of-pocket losses tied to the breach.

Claimants who experienced identity theft, fraud, or other concrete harms as a direct result of the breach may be eligible for higher reimbursement tiers, while those filing without documented losses may receive a smaller, flat-rate payment — though specific tier structures have not been confirmed in available reporting.

Are You Eligible?

You may be eligible to file a claim if you:

  • Were a current or former patient of Hillcrest Convalescent Center
  • Received a data breach notification letter from the facility informing you that your personal information may have been affected

Documentation needed: Claimants are typically asked to provide their breach notification letter or other identifying information to verify their eligibility. Check the official settlement website for specific documentation requirements.

How to File a Claim

  1. Visit the official settlement website (check your breach notification letter for the URL or contact the settlement administrator)
  2. Complete the claim form with your personal and contact information
  3. Submit any required documentation, such as your breach notification letter or proof of identity
  4. File your claim before the court-imposed deadline

If you received a notification letter from Hillcrest Convalescent Center regarding the breach, that letter should contain instructions for participating in the settlement.

What the Case Was About

The class action lawsuit alleged that Hillcrest Convalescent Center failed to adequately protect the sensitive personal information of its patients. As a healthcare facility providing skilled nursing and short-term rehabilitation services, Hillcrest held particularly sensitive data — information that commonly includes names, Social Security numbers, dates of birth, medical records, and health insurance details.

The lawsuit alleged that the facility's data security practices were insufficient to prevent unauthorized access to patient records, and that affected individuals were placed at an elevated risk of identity theft and fraud as a result. The complaint also alleged that patients were not notified of the breach in a timely manner, though Hillcrest has not admitted wrongdoing as part of the settlement agreement.

Data breaches at healthcare facilities are subject to federal oversight under the Health Insurance Portability and Accountability Act (HIPAA), which requires covered entities to safeguard protected health information and notify affected individuals following a breach.

Important Dates

Specific deadlines — including the claim filing deadline, fairness hearing date, and expected payment timeline — have not yet been confirmed in available public reporting. Class members should monitor the official settlement website or their breach notification letter for updates on key dates.


Settlement: Hillcrest Convalescent Center Data Breach Class Action Settlement

Case Number: Not yet confirmed in available reporting

Court: Not yet confirmed in available reporting

Settlement Amount: Not yet publicly disclosed

Claim Deadline: Check the official settlement website

Settlement Website: Check your breach notification letter for the official claims portal URL


Think you may be affected by the Hillcrest Convalescent Center data breach? Review your mail for a notification letter from the facility and check the official settlement website for claim filing details before the deadline passes. Questions about the settlement process? Share them in the comments below.

Latest News

Loading...

Illustration of a mobile device getting an email notification