San Diego Unified School District Data Settlement
$40–$2,500
This settlement is closed to new claims — the deadline was January 13, 2026. You can still see what it was about and follow the case in court below. Looking for money you can still claim? Browse open settlements →
What happened
San Diego Unified School District ("SDUSD") suffered a ransomware attack on or about October 25, 2022, in which a third-party threat actor group gained unauthorized access to SDUSD's systems and infected certain files with ransomware. This may have exposed the personal identifiable information and/or personal health information of certain SDUSD students and employees. SDUSD denies liability, but has agreed to settle the resulting class action lawsuit.
Do you qualify?
All California residents to whom SDUSD mailed notification that their personal information may have been compromised as a result of the data incident discovered on or about October 25, 2022. The class excludes the court, court staff, people who request exclusion, and anyone convicted of or pleading nolo contendere to crimes related to initiating or causing the data breach.
How to file
Submit a Claim Form by January 13, 2026. You must attest to your losses and provide documentation if claiming reimbursement for out-of-pocket losses or extraordinary expenses. Minors can claim a $40 cash payment if their parent or guardian submits the form attesting they were minors at the time the settlement agreement was executed (May 5, 2025) and did not file for other reimbursements.
New to class actions?
This summary was generated from public settlement documents and may contain errors. Confirm eligibility, deadlines, and payment terms on the official settlement website before filing. ClaimWatch is not a law firm and this is not legal advice. Filing a claim is free.
More data breach settlements
View all →WISP, Inc. Data Privacy Settlement
WISP, Inc. allegedly disclosed customers' personally identifiable information to third parties through Meta Pixel and other tracking technologies without consent, in violation of privacy laws including the Florida Security of Communications Act and California Invasion of Privacy Act. The defendant denies all claims and admits no wrongdoing but agreed to the settlement to avoid litigation costs and uncertainties.
Up to $18
Chattanooga Heart Institute Data Breach Settlement
Memorial Heart Institute experienced a cybersecurity incident between March 8 and March 16, 2023, that may have resulted in unauthorized access to or acquisition of individuals' private information including names, addresses, phone numbers, Social Security numbers, health insurance information, and clinical records.
AGC America Data Breach Settlement
In December 2023, a third party conducted a targeted cyberattack on AGC America's systems and gained unauthorized access to personal information. The compromised data may have included names, addresses, dates of birth, Social Security numbers, driver's license numbers, financial account information, passports, payment card numbers, and health insurance plan enrollment information. AGC denies any wrongdoing.
TRISTAR Data Settlement
TRISTAR Insurance Group, Inc. experienced a data breach in November 2022 in which unauthorized access occurred to personally identifiable information of certain TRISTAR customers. TRISTAR denies all claims and wrongdoing; the settlement is not an admission of liability but rather resolves disputed claims.