secwatch.observer — SEC 8-K summary
======================================

Issuer:     HEALTHEQUITY, INC. (HQY)
CIK:        0001428336
Form:       8-K
Filed at:   2024-07-02T23:59:59+00:00
Accession:  0001428336-24-000055
Event type: cyber
Sentiment:  negative
Materiality: 0.65
Item codes: 8.01, 9.01
LLM model:  deepseek-v4-flash:cloud@v2

HealthEquity discloses data breach via compromised business partner account; PII/PHI accessed
--------------------------------------------------------------------------------

- A third party compromised a business partner's account, accessing personally identifiable and protected health information of some members.
- Investigation concluded some information was transferred off the partner's systems; no malicious code found on HealthEquity systems.
- No interruption to systems, services, or business operations; company is notifying partners, clients, and affected members.
- Company expects to offer complimentary credit monitoring and identity restoration; holds adequate cybersecurity insurance.
- Company currently believes the incident will not have a material adverse effect on its business, operations, or financial results.

Source:
  EDGAR index:    https://www.sec.gov/Archives/edgar/data/1428336/000142833624000055/0001428336-24-000055-index.htm
  Primary doc:    https://www.sec.gov/Archives/edgar/data/1428336/000142833624000055/hqy-20240702.htm
  HTML page:      https://secwatch.observer/filing/0001428336-24-000055

License: Source filings: public domain (SEC EDGAR). Summaries (headline + bullets): CC-BY-4.0; attribute https://secwatch.observer