The company and UPMC failed to meet Federal Trade Commission standards for protecting data by using inadequate encryption, login and firewall protections. Also the lawsuit claims that the defendants had a duty to protect the highly sensitive, private, confidential personal and financial information and the tax documents and failed to safeguard and prevent vulnerabilities from being taken advantage of. The Pittsburgh Post-Gazette reports that the University of Pittsburgh Medical Center is facing a class action lawsuit over a recent data breach that may have exposed as many as 27,000 employees’ tax information. The UPMC has admitted that the personal and financial information of more than 27,000 workers was compromised and that at least 788 of those have already been the victims of tax fraud. A UPMC employee started taking her class-action lawsuit when it came to a data breach involving the medical system to state court because a Florida software company was not involved in the situation, her lawyer stated on Tuesday. The employee named as the lead plaintiff Alice Patrick works as a dialysis clinician, located in the UPMC McKeesport. Both the attorneys who filed the lawsuit on her behalf and representatives of UPMC declined to be interviewed for this. The lawsuit stated that Ms. Patrick was one of the 788 employees who according to UPMC were such victims of the tax return fraud, and in result of the breach. In addition to this, an attorney seeking to represent all of the victims of a breach of UPMC personnel data claimed Saturday that the damage from the compromise of personal information has yet to be calculated and could continue to worsen. The lawsuit against Ultimate Software and UPMC seeks monetary damages that is 25 years of credit monitoring and credit restoration for the affected employees and payment of fees and expenses associated with the litigation. UPMC Greenville workers had to file additional paperwork with the IRS and had to use accounting services provided by UPMC to make sure that anti-fraud measures are in place this year and for the next 5 years to protect their income tax refunds from fraud and theft.  A spokeswoman linked with the Florida company stated Monday that UPMC was not one of its payroll customers. Therefore, it was not involved in the data breach. [AMAZONPRODUCTS asin="0470498773" fields="title,sm-image,small-image-link,button"]]]>