What Is This About?

If you recently received a letter or an email from Navia Benefit Solutions, Inc. (“Navia”) informing you that your sensitive personal or protected health information was compromised in a data breach, we would like to speak with you about your rights and potential legal remedies. Navia recently disclosed that it was the victim of a data breach that may have exposed individuals’ sensitive personal and protected health information.

What Happened?

On January 23, 2026, Navia Benefit Solutions, Inc. (“Navia”) became aware of a security incident affecting its systems. Upon detection, Navia launched an investigation with the assistance of third-party cybersecurity experts to determine the nature and scope of the incident. Navia also took action to fix the vulnerability that had been used to gain access. The investigation determined that an unauthorized third party gained read-only access to certain participant data through an application programming interface (API) between December 22, 2025, and January 15, 2026. Navia confirmed that there was no evidence of system intrusion, data modification, fund movement, or access to claims data or members’ bank account information.

Navia conducted a review of the impacted data and identified affected individuals. According to an announcement by the Washington State Healthcare Authority, the breach involved 2.7 million records. Among those affected are nearly 27,000 current and former Public Employees Benefits Board (PEBB) members and approximately 5,600 current and former School Employees Benefits Board (SEBB) members, from records dating back to 2018. About 37 school districts that contracted with Navia before the implementation of the SEBB program in January 2020 were also notified.

On March 2, 2026, Navia publicly disclosed the incident on its website and began sending notice letters to impacted individuals.

What Information Was Impacted?

Upon information and belief, the following types of sensitive personal and protected health information may have been compromised:

• • • • • • • • Names;
              • Social Security numbers;
              • Dates of birth;
              • Physical addresses;
              • Phone numbers;
              • Email addresses;
              • Health plan information; and
              • Navia ID numbers.

What Action Can You Take?

Levi & Korsinsky, LLP is investigating whether affected users are entitled to compensation. If you received a notice from Navia Benefit Solutions, there is no cost or obligation to participate. Follow the link below to find out about your rights and potential legal remedies available.