New York, NY: A $10 million settlement has been reached in the Target data breach class action lawsuit. If approved, the settlement will resolve multidistrict litigation (MDL) resulting from one of the largest data breaches to date, affecting as many as 110 million Target customers.
The data breach occurred late in 2013, and compromised customers' personal information including bank and debit card information. The settlement motion requests certification of a nationwide class of an estimated 110 million consumers whose credit or debit card information or other personal information was compromised following the breach.
Under the terms of the proposed settlement, affected Target customers who can document their losses will be eligible for up to $10,000 in damages. For those who cannot produce documentation, a payment will be made from the remainder of the settlement fund, once outstanding costs are deducted. The remaining balance will be divided equally.
Additionally, the agreement stipulates that Target makes a greater effort to safeguard its customer data, which would include appointing a high-level executive as chief information security officer and maintaining a written information security program, as well as a process to monitor for information security events and to respond to any such events determined to present a threat.