University of Florida Data Breach

On October 22, 2025, the University of Florida (UF) reported a breach that exposed protected health information (PHI) of some patients. If you were affected by this breach, you may be entitled to compensation through a class action lawsuit.

University of Florida’s Data Breach Investigation

The University of Florida (UF), renowned for its commitment to healthcare quality, has recently informed its patients of a data breach involving the inadvertent disclosure of protected health information (PHI). The breach occurred on October 20, 2025, when a staff member from the UF College of Nursing, Department of Biobehavioral Nursing Science mistakenly disclosed sensitive health information to unauthorized individuals via email. The incident was due to the unintentional use of the “carbon copy” (CC) feature instead of “blind carbon copy” (BCC) when sending out an email related to the RADIANCE study.

The compromised information included patients’ names, email addresses, diagnosis/condition, and study-related details such as the name of the study and its location. Importantly, this breach did not involve sensitive financial information, such as Social Security numbers, health insurance numbers, or credit card data.

Upon discovering the breach, UF took immediate action, including corrective measures with the staff member involved. The individual’s actions were deemed inconsistent with UF’s training protocols and privacy expectations. The University is committed to safeguarding patient privacy and ensuring such an incident does not occur again.

When Did This Breach Occur?

The breach occurred on October 20, 2025, when the email with sensitive information was sent to unauthorized recipients. The issue was identified on October 22, 2025, and immediate corrective actions were initiated.

What Information Was Breached?

The compromised data included:

• Full name

• Email address

• Diagnosis/condition

• Name of the study

• Study location

While no financial data was involved, the breach still exposes sensitive personal health information that may be used inappropriately or cause concern among the affected individuals.

What You Can Do

If you were affected by this breach, here are the steps you can take to protect your personal information:

1. Monitor Your Health Information: While no financial data was exposed, you should monitor your health-related accounts and insurance for any unusual activity.

2. Stay Alert to Phishing Attempts: Be cautious of any emails or calls that may try to exploit the breach to gather additional personal information or conduct fraudulent activities.

3. Contact UF for More Information: UF is committed to keeping affected individuals informed. Contact UF’s customer service for further details or if you suspect misuse of your data.

4. File a Complaint: If you suspect misuse of your personal health information, report it to the relevant authorities, including the Department of Health and Human Services (HHS).

UF has already taken corrective steps, including updating policies and enhancing staff training, but it’s important for affected individuals to remain vigilant.

File a Data Breach Lawsuit Against the University of Florida

If you were affected by this data breach, you may be entitled to compensation. Joining a class action lawsuit allows you to hold the University of Florida accountable for failing to adequately protect your sensitive health information.

Contact us at Class Action U, where we’ll connect you with a lawyer skilled in class action lawsuits. Fill out our quick, easy, secure form to sign up. There is no cost to reach out to our legal partner, and no obligation to take further action after speaking with someone from our team. Together, we can ensure that your voice is heard and justice is served.