On April 14, 2023, Medtronic MiniMed, Inc. and MiniMed Distribution Corp. (collectively “Medtronic Diabetes,” “Medtronic”) filed a notice of data breach with the Montana Attorney General after learning that the companies’ use of tracking and authentication technologies disclosed confidential consumer information to unauthorized parties. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names, email addresses, IP addresses, phone numbers, and protected health information. After confirming that consumer data was leaked, Medtronic began sending out data breach notification letters to all individuals who were impacted by the recent data security incident.
If you received a data breach notification from Medtronic MiniMed or MiniMed Distribution, it is essential you understand what is at risk and what you can do about it. To learn more about how to protect yourself from becoming a victim of fraud or identity theft and what your legal options are in the wake of the Medtronic Diabetes data breach, please see our recent piece on the topic here.
What We Know So Far About the Medtronic Diabetes Breach
News of the Medtronic Diabetes data breach is still fresh; however, what we know at this point comes from the company’s filing with the Montana Attorney General. According to this source, on February 13, 2023, Medtronic Diabetes learned that tracking technologies used by the company disclosed certain details about users’ actions within the company’s InPen App. After learning of the incident, Medtronic Diabetes launched an internal investigation to gain a better understanding of what information was subject to unauthorized access.
The Medtronic Diabetes investigation concluded that certain Google Services employed by the company designed to gather information about users transmitted their information to Google without the user’s permission.
Upon discovering that sensitive consumer data was made available to an unauthorized party, Medtronic Diabetes began to review the affected files to determine what information was compromised and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, email address, IP address, phone number, and protected health information.
On April 14, 2023, Medtronic Diabetes sent out data breach letters to all individuals whose information was compromised as a result of the recent data security incident.
More Information About Medtronic Diabetes
Medtronic Diabetes is a medical device manufacturing company based in Minneapolis, Minnesota. The company designs, manufactures and sells a variety of insulin delivery systems to patients suffering from diabetes. Medtronic Diabetes is a division of the larger Medtronic, an Ireland-based manufacturing company. Medtronic employs more than 90,000 people and generates approximately $31.5 billion in annual revenue. Medtronic Diabetes generates roughly $570 million in revenue.