

Sedgwick sent me 30 people’s records. How should I proceed?
Info: Sedgwick is a worker’s compensation company. I had to file an accident report at work, luckily I never received medical care and made a full recovery. Now on to the story.
I received a letter saying they were closing my claim as I made a full recovery (I was unaware that I even had an opened claim). Along with my claim they sent me over 60 pages worth of medical records. These records included around 30 people’s names, social security numbers, addresses, phone numbers, emails, and case details. Some of these documents were letters stating approval or denial of benefits. I haven’t looked through everything because I genuinely feel bad for all of these people. One of the pages said “ATT Bill Review” (photo attached) so I’m wondering if this was all accidentally sent to me instead of the Billing Department? Though I’m not sure how someone messes up this bad. I actually got mad that a company would do this and ended up sending an email to the lady identified on the letter I received, and said that this was a huge HIPPA violation that they needed to figured it out.
I guess my question is how do I go about doing the right thing on behalf of everyone who has had their privacy violated? What are the proper entities I can report this to? Also can I shred all of this paperwork or should I hold it for evidence?
Irony cherry on top is that this privacy statement was in the mix of all of the documents (see photo)