A $5.085 million settlement has been reached in the U-Haul data breach class action lawsuit, offering compensation to California residents whose personal information was compromised in cyberattacks during September 2022 and December 2023. U-Haul, a national moving and storage company, was accused of failing to protect consumer data during these breaches, which allegedly exposed names and driver’s license numbers. Although U-Haul has not admitted any liability or wrongdoing, it has agreed to settle the claims and compensate affected consumers in order to resolve the legal action.
Under the terms of the settlement, class members who qualify are entitled to a monetary payment based on the number of valid claims filed. Each qualifying consumer can expect a pro rata payment estimated to be around $100, but the final payout may vary depending on the number of claimants who submit valid claims. This settlement is open to California residents whose personal data was compromised or potentially compromised in either the 2022 or 2023 data breaches. To receive these benefits, class members must submit a valid claim form by October 15, 2024.
Consumers affected by the breaches also have the option to exclude themselves from the settlement or object to its terms. The deadline for exclusion or objection is set for September 16, 2024. Those who choose to exclude themselves will not receive any settlement payments but will retain the right to pursue their own lawsuits against U-Haul. The final approval hearing, which will determine whether the settlement agreement will receive full court approval, is scheduled for October 23, 2024. This hearing will also address any objections raised by class members.
This settlement offers significant relief to those whose sensitive information may have been compromised in the U-Haul data breaches. Eligible class members are encouraged to review their options carefully and submit claims before the deadline to ensure they receive their portion of the settlement. U-Haul’s decision to settle without admitting wrongdoing highlights the importance of protecting consumer data and underscores the legal risks companies face in the wake of cybersecurity incidents.
Reference: