Subscribe To Our Newsletter

This field is for validation purposes and should be left unchanged.

Women’s Wellness of Southern Delaware Data Breach

WWSD discovered in April 2026 that a former aesthetics provider retained patient information, including medical and contact details. Notifications were issued in June 2026. Individuals are encouraged to monitor accounts, consider credit protection, and explore legal options.

Women’s Wellness of Southern Delaware
Date of Breach: April 28, 2026
CAU logo

Who was affected:

Clients of Women’s Wellness of Southern Delaware

Impacted Data:

Name, email address, and mailing address

Birthdate and gender

Phone number

Medications, supplements, and allergies

Aesthetics service-related medical history, intake records, face maps, photographs, dates of services and purchases, and descriptions of services or items purchased

Women’s Wellness of Southern Delaware (WWSD) has notified affected individuals of a data security incident involving the retention of patient information by a former aesthetics services provider. While no misuse of data has been reported, WWSD has provided guidance and resources to protect impacted individuals.

Women’s Wellness of Southern Delaware’s Data Breach Investigation

On April 28, 2026, WWSD learned that a provider who had rendered aesthetics services under their organization retained patient contact information and certain patient records after their engagement ended. The retained information included data related to aesthetics service patients and limited clinical service transactions. WWSD took immediate steps to address the situation, engaging counsel and negotiating with the former provider to ensure the return or destruction of retained data .

WWSD also implemented additional security measures to prevent similar incidents in the future and issued notifications to affected individuals. The company established a toll-free call center through IDX, a leader in identity protection services, to assist individuals with questions and guidance on safeguarding their information.

When Did This Breach Occur?

The retention of patient information was discovered on April 28, 2026, though the provider had access after their engagement ended. Notification to the affected individual in New Hampshire was sent on June 26, 2026 once the impacted data was confirmed and addresses verified .

What Information Was Breached?

For the affected New Hampshire resident, the data that may have been retained includes:

  • Name, email address, and mailing address
  • Birthdate and gender
  • Phone number
  • Medications, supplements, and allergies
  • Aesthetics service-related medical history, intake records, face maps, photographs, dates of services and purchases, and descriptions of services or items purchased

Only some of these data elements may apply to each individual.

What You Can Do

Affected individuals are encouraged to take the following precautionary measures:

  1. Monitor Accounts: Review bank statements, credit reports, and healthcare-related records for suspicious activity.
  2. Obtain Free Credit Reports: Under U.S. law, individuals are entitled to one free credit report annually from Equifax, Experian, and TransUnion at www.annualcreditreport.com or by phone at 1-877-322-8228.
  3. Place a Security Freeze: Prevent access to your credit report without written authorization. Instructions for all three major credit bureaus are available online.
  4. Place a Fraud Alert: Alert creditors to take extra steps to verify your identity before granting credit. Contact each credit bureau to implement a fraud alert.
  5. Report Suspicious Activity: Notify law enforcement, the Federal Trade Commission (www.ftc.gov/idtheft), and your state Attorney General if identity misuse is suspected.

Residents may also consult their state Attorney General for guidance and protection measures, including Maryland, New York, North Carolina, Rhode Island, and Washington D.C. .

File a Data Breach Lawsuit Against Women’s Wellness of Southern Delaware

Healthcare providers have a legal duty to safeguard sensitive patient information. When a provider fails to prevent unauthorized retention or access, affected individuals may have legal options to recover compensation for loss of privacy, time spent mitigating risks, and out-of-pocket expenses.

If you were notified by WWSD or believe your personal information may have been affected, you may explore class action lawsuit options. Joining others impacted can help hold the organization accountable and encourage stronger data protection measures.

Contact us at Class Action U, where we’ll connect you with a lawyer skilled in class action lawsuits. If you’ve been contacted about this breach, received notice, or discovered you were impacted, fill out our quick, easy, and secure form to sign up. There is no cost to reach out to our legal partner and no obligation after speaking with someone from our team.

Subscribe To Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This field is for validation purposes and should be left unchanged.
Other Data Breaches
Date of Breach: July 2, 2026
Date of Breach: September 25, 2025

Frequently Asked Questions

A data breach occurs when sensitive, confidential, or protected information is accessed, stolen, or disclosed without authorization. Data breaches often occur through phishing emails, malware, weak passwords, insider threats, or unsecured databases. Indicators of a data breach can include unexpected password resets, suspicious account activity, unauthorized transactions, or notifications from companies about compromised information.If you suspect your data has been compromised, you must take measures and act quickly. Change passwords, enable two-factor authentication, review your financial accounts for unusual activity and consider freezing your credit.

Once stolen, your personal information may be sold on the dark web or used for identity theft and financial fraud. In some cases, hackers use the data to extort companies or launch further attacks. Victims often face long-term risks, including damage to credit and privacy.

If you receive a data breach notification, don’t ignore it. Immediately change passwords for the affected account and any others that share credentials. Enroll in any free credit monitoring services offered and monitor financial statements closely.

To pursue a data breach claim, you’ll need documentation showing your information was compromised and proof of resulting harm, such as fraudulent charges, credit score damage, or identity theft reports. Notification letters, financial records, and communication with the breached company can help support your claim.

Yes. If a company fails to protect consumer data or delays notifying victims, it may be held liable under state and federal privacy laws. Many victims join class action lawsuits to recover financial losses and hold negligent organizations accountable.

Data breach settlements vary widely depending on the size of the breach, type of data compromised, and damages suffered by victims. Payouts may include cash compensation, identity theft protection, or reimbursement for losses. Many settlements range from a few hundred to several thousand dollars per person. A skilled data breach lawyer can guide victims through the complex legal process, ensuring their rights are protected. If you’ve received a data breach notification or believe your personal data was exposed, you may be eligible for compensation. Contact Class Action U to learn more about how to join a data breach lawsuit and understand the process of filing.