Phreesia Data Breach Lawsuit Investigation

Written By Valeria Linares

Patients and healthcare organizations across the country are receiving mailed notices about a cybersecurity incident involving Phreesia. If you got one of these letters, review the confirmed details below and learn how to protect your rights or file a claim.

Take action: Complete the form on this page to discuss your potential claim with a data-privacy attorney at no cost.

Submit Claim

Key Facts of the Phreesia Breach

  • Company: Phreesia, Inc. (Phreesia)

  • Incident Window: August 17, 2025 (single-day access)

  • Breach Discovered: August 25, 2025

  • Public Disclosure: February 6, 2026 (California filing)

  • Systems Affected: Salesforce service-ticket environment

  • Cause: Exploitation of an unknown vulnerability in a third-party tool referred to as “Salesloft Drift”

  • Data Exposed: Limited patient information contained in support tickets. Charts, payment-card, and bank data were not accessible.

  • Population Impacted: Undisclosed number of individuals nationwide

  • Remediation Offered: Complimentary two-year identity & credit monitoring from Kroll

Data breach Notice

Timeline of Events

According to the notice filed with the California Attorney General, an unauthorized actor accessed Phreesia’s Salesforce instance on August 17, 2025 by leveraging a zero-day flaw in the Salesloft Drift integration. Phreesia learned of the broader third-party compromise on August 25, 2025, immediately disabled the affected software, and engaged external cyber-security specialists to investigate.

What Information Was Involved?

The investigation confirmed that only information contained in customer-service tickets was viewable. While exact data elements vary by individual, Phreesia states that no medical charts, credit-card numbers, or financial-account details were exposed.

How Phreesia Responded

  • Disabled the Salesloft Drift integration and isolated the Salesforce environment.

  • Retained outside cyber-security experts to determine the scope of access.

  • Enhanced internal security controls and updated third-party risk management practices.

Your Options & Next Steps

Even though Phreesia states it is not aware of any misuse of the data, privacy laws give affected individuals important rights, including the ability to seek compensation for time spent monitoring accounts or losses caused by identity fraud.

  1. Activate free credit monitoring: Visit enroll.krollmonitoring.com and use the membership number provided in your letter.

  2. Document everything: Save the breach notice and any suspicious correspondence.

  3. Consider legal representation: Data-privacy attorneys are investigating potential claims against Phreesia. Completing the form on this page preserves your eligibility without cost or obligation.

Company Overview

Founded in 2005, Phreesia provides check-in, intake, and payment solutions for healthcare organizations across the United States.

  • Website: phreesia.com

  • Headquarters: 1521 Concord Pike, Suite 301, Wilmington, Delaware, United States

  • Industry: Health Care Information Technology

  • Employees: 2,082

  • Ticker Symbol: PHR (NYSE)

  • Social: LinkedInXFacebookInstagramYouTube

Sources

Impacted Entities

Frequently Asked Questions

I received a data breach letter from Phreesia — what should I do?

Confirm the letter is legitimate, activate the complimentary Kroll credit-monitoring offer, monitor your accounts, and consider joining the lawsuit investigation using the form on this page.

How do I submit a claim related to the Phreesia data breach?

Complete the secure web form provided here. A privacy attorney will review your eligibility and explain possible compensation paths.

Am I eligible to join a lawsuit against Phreesia?

You may qualify if your personal information was stored in Phreesia’s Salesforce service-ticket system and you received (or will receive) an official breach notice dated February 6, 2026 or later.

What information did the Phreesia breach expose?

Only data contained in customer-service tickets was viewable. Phreesia states that no medical charts, payment-card numbers, or bank-account information were involved.

Did Phreesia offer credit monitoring, and for how long?

Yes. The company arranged a complimentary two-year identity and credit monitoring package through Kroll.

How can I get the official breach notice (PDF) for Phreesia?

You can download it directly above or access it via the California Attorney General’s website.

Attorney Advertising. Prior results do not guarantee a similar outcome.

Valeria Linares
Previous

Chapman & Associates Data Breach Lawsuit Investigation
Next

Gain FCU Data Breach Lawsuit Investigation