A federal judge in Michigan has been asked to preliminarily approve a $2.9 million deal between Wright & Filippis and the people affected by a 2022 data breach. The class action would settle claims that the company didn’t adequately protect Social Security numbers, financial account numbers, health insurance information, and driver’s license numbers from a cyberattack that affected 877,000 patients, customers, employees, and job applicants.
The information was compromised in January 2022, and Wright & Filippis learned about the data breach in May 2022, according to the motion.
The class action suit also alleged Wright & Filippis unreasonably delayed notifying the people affected who say they have suffered identity theft, are worried about imminent injury from fraud, and have incurred out-of-pocket expenses trying to mitigate the fallout from the data breach.
Under the agreement, class members can submit a claim for $5,000 in documented loss payment, credit monitoring and insurances services or a pro rata cash payment, according to Law360. The lead plaintiffs in the case will be awarded $1,500 under the proposed agreement.
Wright & Filippis has adopted measures to enhance data security, according to the agreement.