OPM Data Breach Lawsuit
On March 14, 2016, lead plaintiffs’ counsel and Stueve Siegel Hanson attorneys Norman Siegel, Barrett Vahle, and Austin Moore filed a Consolidated Amended Complaint in the District of Columbia against the U.S. Office of Personnel Management (OPM) and government contractor KeyPoint Government Solutions Inc. for failing to safeguard and secure the personal information of up to 21.5 million individuals.
The stolen information includes names, addresses, Social Security numbers, mental health records and financial histories, as well as fingerprint data for up to 5.6 million individuals. Stueve Siegel originally filed suit in the District of Kansas in July 2015 on behalf of Mary Woo in the action Woo v. U.S. Office of Personnel Management. That case was transferred to the District of Columbia where the OPM data breach cases have been consolidated as part of multi-district litigation.
You can read a copy of the Consolidated Amended Complaint here.
Plaintiffs allege that the OPM violated the Administrative Procedure Act and Privacy Act of 1974 which requires federal agencies to establish appropriate safeguards to insure the security and confidentiality of individuals’ records.
Defendant KeyPoint is a government contractor that was tasked with handling most of the federal background checks managed by the OPM. In December 2014, KeyPoint suffered its own cyber-security breach whereby attackers were able to access KeyPoint’s OPM credentials. The combination of KeyPoint’s data security weaknesses and the OPM’s cyber-security failures contributed to the massive scope of the OPM breach.
If you may have been impacted by the OPM and Keypoint breaches, please complete the form on this page.