Hims & Hers Data Breach Lawsuit Investigation

What Information Was Exposed?

The company’s review determined that the following personal details may have been present in the compromised tickets:

• Name

• Contact information (such as email address, phone number, or mailing address)

According to the notice, customer medical records and communications with healthcare providers were not impacted.

How Hims & Hers Responded

The telehealth provider states it:

• Immediately secured the affected customer service platform

• Launched a forensic investigation to determine scope

• Conducted a comprehensive ticket-by-ticket review to identify impacted individuals

• Notified federal law enforcement and relevant regulators

• Is updating internal policies and procedures to reduce the likelihood of similar incidents

• Is offering 12 months of complimentary credit monitoring and identity-restoration services through Cyberscout

Recommended Next Steps for Impacted Customers

1. Enroll in the free Cyberscout services using the instructions in your mailed notice.

2. Monitor bank, credit-card, and health-insurance statements for unfamiliar activity.

3. Obtain and review your free annual credit reports for inaccuracies.

4. Report any suspected fraud to your financial institutions and the appropriate authorities.

Key Dates at a Glance

• Breach period: February 4 – 7, 2026

• Discovery: February 5, 2026

• Personal data confirmed: March 3, 2026

• Notice mailed: April 2, 2026

Company Overview

Founded in 2017, Hims & Hers offers telehealth products and prescription services across the United States.

• Headquarters: 2269 Chestnut St., #523, San Francisco, CA, United States

• Industry: Telehealth

• Ticker: NYSE: HIMS

• Website: hims.com

• Support: support.hims.com

• Privacy Policy: hims.com/privacy-policy

• Social Media: X • Facebook • LinkedIn • Instagram • YouTube

Sources

• CA Attorney General Notice (PDF)

• Wikipedia: Hims & Hers, Inc.

Impacted Entities

• Official Website

Frequently Asked Questions

I received a data breach letter from Hims & Hers — what should I do?

Follow the enrollment instructions for the complimentary Cyberscout credit-monitoring service, review your financial accounts, and keep the notice for your records.

How do I submit a claim related to the Hims & Hers data breach?

Preserve your breach letter and any fraud evidence, then consult a qualified data-privacy attorney to discuss filing an individual or class-action claim.

Am I eligible to join a lawsuit against Hims & Hers?

Eligibility generally depends on whether your personal data was involved and whether you experienced losses. Speak with counsel to review your specific circumstances.

What information did the Hims & Hers breach expose?

The incident potentially exposed names and contact information contained in certain customer-service tickets. Medical records and provider communications were not involved.

Did Hims & Hers offer credit monitoring, and for how long?

Yes. The company is providing 12 months of complimentary credit-monitoring and identity-restoration services through Cyberscout.

How many people were affected by the Hims & Hers breach?

As of the April 2, 2026 notice, Hims & Hers has not publicly disclosed the total number of impacted individuals.

How can I get the official breach notice (PDF) for Hims & Hers?

You can download the full notice directly from the California Attorney General site using the button above.

Attorney Advertising. Prior results do not guarantee a similar outcome.