Navia data breach update and mailing

Washington State Health Care Authority sent this bulletin at 03/17/2026 08:30 AM PDT

March 17, 2026

Can’t access the links? Add “lnks.gd” to the allowlist of your content blocking software.

Navia data breach update and mailing

We recently informed you of a Navia Benefits Solutions data breach that was discovered in late January. On March 18, Navia will mail a letter to approximately 27,000 current and former PEBB members to notify them that their data was affected. The letter will list the specific data categories (such as name, birthday, ID number, etc.) that were accessed and acquired, along with information on how to protect their credit and who to call for help.

What Navia is doing

Navia has partnered with Kroll, an incident response provider, to help affected individuals with their questions about the data breach and how to enroll in credit monitoring. If you get questions from employees about this incident, please direct them to call Kroll at 1-844-443-1645, Monday through Friday from 9 a.m. to 6:30 p.m. Eastern Time.

Navia has also posted an alert on their PEBB homepage that links to their announcement about the incident.

Additional resources

We’ve updated the HCA announcement to include FAQs that you can use to help answer employee questions and share as needed.

About the Health Care Authority (HCA)

Functioning as both the state's largest health care purchaser and its behavioral health authority, the Washington State Health Care Authority (HCA) is a leader in ensuring Washington residents have the opportunity to be as healthy as possible.

There are three pillars of our work: Apple Health (Medicaid); the Public Employees Benefits Board (PEBB) and School Employees Benefits Board (SEBB) programs; and behavioral health and recovery. Under these pillars, HCA purchases health care, including behavioral health treatment for more than 2.7 million Washington residents and provides behavioral health prevention, crisis, and recovery supports to all Washington residents.

Please do not reply directly to this message. For more information, visit the HCA website, where you'll also find contact information.

Disclosure notice

All messages we send via GovDelivery are subject to public disclosure, as are the names and email addresses of those who sign up for email notifications.

Nondiscrimination

The Washington State Health Care Authority (HCA) complies with all applicable federal and Washington state civil rights laws and is committed to providing equal access to our services. Visit HCA’s website to view complete nondiscrimination statements.

Navia data breach update and mailing

Navia data breach update and mailing

What Navia is doing

Additional resources

Thank you for subscribing to receive notices from Outreach and Training.

About the Health Care Authority (HCA)

Disclosure notice

Nondiscrimination