Subscribe To Our Newsletter
Subscribe To Our Newsletter
Lucent Health Solutions LLC has agreed to establish a $1.95 million class action settlement to resolve allegations surrounding a targeted October 2023 cyberattack. The data security incident exposed the private personal identifying information (PII) and protected health information (PHI) of approximately 37,000 individuals, including names, dates of birth, and health insurance specifics.
Lucent Health Solutions LLC has agreed to pay $1.95 million to resolve a class action lawsuit following a targeted October 2023 cyberattack that exposed sensitive consumer details. If your personal data or protected health information was compromised in this cybersecurity failure, you may be eligible to submit a claim for direct financial compensation worth up to $6,175.
A data breach involving private medical information can cause long-lasting anxiety and disruptions in your everyday life. When companies collect confidential consumer information, they assume a legal and ethical responsibility to safeguard it from external security threats. This class action settlement addresses allegations that Lucent Health failed to implement adequate data security measures, leading to unauthorized third-party access to files containing private information belonging to roughly 37,000 individuals.
The lawsuit focuses directly on the fallout of this massive data exposure. Affected consumers argued that the company could have prevented the incident by employing stronger network protections and employee security protocols. Rather than navigating a prolonged and complex courtroom battle against a massive corporate entity on your own, participating in a class action lawsuit allows everyday people to stand together and hold companies accountable for failing to keep consumer data safe.
The legal dispute traces its origins back to October 2023, when a targeted cyberattack successfully breached Lucent Health Solutions’ computer systems. The plaintiff who initiated the lawsuit alleged that the organization failed to maintain adequate data security infrastructure. This lapse allegedly allowed unauthorized outsiders to bypass internal defenses and access private directories containing deeply personal digital records.
During the cybersecurity failure, a wide array of confidential consumer records was exposed to unauthorized individuals. The files compromised during the data incident contained sensitive information, including full names, exact dates of birth, and detailed health insurance information. When cybercriminals obtain this level of personal data, affected consumers are left facing an elevated risk of identity theft, medical fraud, and unsolicited phishing attempts.
For its part, Lucent Health Solutions denies all allegations of negligence and maintains that it did not break any consumer privacy laws. Settlements of this nature allow corporations to resolve complex legal disputes without admitting any official liability or wrongdoing. By establishing a $1.95 million settlement fund, Lucent Health avoids the escalating costs and unpredictability of a full trial while creating a formalized path to compensate the thousands of individuals whose records were vulnerable.
In the United States, several federal and state frameworks protect consumer medical records and personal histories. The Health Insurance Portability and Accountability Act, widely known as HIPAA, mandates strict guidelines that healthcare providers and third-party administrators must follow to safeguard protected health information (PHI). While HIPAA itself does not typically allow individual consumers to file private lawsuits, its standards often form the basis of negligence arguments in class action litigation.
When a healthcare data administrator allows private diagnostic records or insurance policy numbers to become accessible to unauthorized third parties, plaintiffs often point to industry-standard data practices to demonstrate a breach of duty. Under state laws and consumer protection acts, companies that aggregate data must ensure their storage systems remain secure against evolving cyber threats.
When these companies fail to live up to those data security obligations, class action lawsuits act as an important check on corporate negligence. These legal actions ensure that corporations face tangible financial consequences for cybersecurity failures, which in turn encourages companies across the entire healthcare ecosystem to dedicate more resources toward securing consumer information and honoring user privacy.
The $1,950,000 settlement fund has been structured to address various types of financial and personal harm experienced by class members. If your information was involved, you have multiple payout tracks available depending on your specific circumstances.
Documented Ordinary Out-of-Pocket Expenses: You can claim up to $550 for standard costs directly linked to managing the data breach. Eligible expenses include paid credit monitoring fees, identity replacement costs, or postage fees spent communicating with your bank. These expenses must have occurred between October 2, 2023, and September 5, 2026.
Documented Extraordinary Out-of-Pocket Losses: If you suffered severe financial fraud or identity theft traceable directly to this data breach, you may be eligible to receive a reimbursement of up to $5,500. This tier covers actual financial losses that have not been reimbursed by other identity theft protection programs or financial institutions.
Reimbursement for Lost Time: Class members can claim up to five hours of personal time spent responding to the cybersecurity incident, compensated at a rate of $25 per hour, for a maximum payout of $125. This category covers tasks like changing digital passwords, exploring credit reports, or talking to financial experts.
Alternative Flat-Rate Cash Payment: If you did not encounter out-of-pocket expenses or identity fraud, you can skip the documentation categories entirely. Instead, you can choose a one-time alternative cash payment of approximately $80.
Complimentary Medical Monitoring: Beyond the direct cash benefits, all class members can enroll in three years of CyEx Medical Shield Complete. This program delivers a robust $1 million medical identity theft insurance policy alongside targeted monitoring for health insurance ID exposures, medical record vulnerabilities, and unauthorized health savings account spending.
You do not need to guess whether you are included in this legal resolution. The court has defined the class criteria explicitly based on the company’s internal data records. You may be eligible to participate and file a claim if your personal identifying information or protected health information was impacted during the October 2023 Lucent Health data breach.
Generally, the easiest way to confirm your eligibility is by checking your mail or email archives for an official notice sent by the settlement administrator. Lucent Health identified approximately 37,000 individuals whose data was compromised during the targeted cyberattack and distributed official informational packets to those individuals.
If you received an official written notice regarding this data incident, you are automatically considered a class member. If you believe your data was held by the company but did not receive a physical notification packet, you can contact the settlement administrator directly to verify your status using your personal records.
Securing your financial payout requires you to file a complete claim form before the approaching cutoff window closes. The settlement administrator provides multiple options for filling out your paperwork to ensure the process remains accessible to everyday people.
To complete your submission online, you will need to access the official claim portal using the unique login ID and PIN provided on the top of your physical settlement notice. If you prefer to handle the process manually, you can download and print a physical PDF copy of the claim form, fill out the required text sections completely, and return it to the administrator via postal mail or electronic email.
Settlement Administrator Contact Details:
Mailing Address: Lucent Health Data Incident Settlement, c/o Settlement Administrator, P.O. Box 25226, Santa Ana, CA 92799-9958
Email Address: info@LHDataBreachSettlement.com
The strict deadline to file your claim form is September 5, 2026. If you do not submit your claim online or have your physical form postmarked by this exact date, you will completely lose your eligibility to receive any cash payments or identity monitoring services.
The documentation you need to provide depends entirely on the specific benefit categories you choose when filling out your claim form. If you choose the flat-rate $80 alternative cash payment, you do not need to provide extensive receipts—you simply need to provide your valid Notice ID and PIN to confirm your membership.
If you are requesting reimbursement for ordinary out-of-pocket expenses, you must upload or attach clear supporting documentation. This can include store receipts, service invoices, or bank statements that explicitly prove you paid out of your own pocket for services like credit monitoring or identity protection after the breach. For extraordinary fraud losses, you must provide comprehensive proof, such as police reports, IRS notices, or bank statements showing fraudulent charges that were never recovered.
If you are submitting a claim for lost time, you must write out a brief, clear text description on the form detailing exactly how you spent those hours. You might note that you spent time reviewing your credit reports, contacting credit bureaus, or speaking with your health insurance provider to ensure no fraudulent medical claims were filed in your name.
When completing your form, you will have the opportunity to choose exactly how you want to receive your settlement funds. The administrator is offering several modern digital payout choices alongside traditional options to fit your lifestyle, including:
PayPal
Venmo
Zelle
Virtual Prepaid Card
Paper Check (mailed directly to your home address)
The gross settlement fund of $1.95 million will be carefully divided to cover all aspects of this legal action. A portion will pay for the standard costs of managing the settlement communication. Additionally, class counsel can request up to $650,000 in attorneys’ fees, and court-approved class representatives may receive up to $5,000 service awards for initiating the case. The remaining balance of the fund will be distributed directly to approved consumers who submit valid claims.
The legal process is steadily approaching its conclusion in a California courtroom. The court has scheduled an official final approval hearing for September 9, 2026. During this hearing, the judge will evaluate whether the $1.95 million agreement is entirely fair and reasonable before signing the final order.
If you wish to exclude yourself from this settlement to preserve your right to sue Lucent Health independently, you must file an opt-out request by August 21, 2026. Keep in mind that opting out means you will receive no money from this fund. If you stay in the settlement, you do not need to attend the court hearing. The administrator is scheduled to distribute the cash payments to approved claimants roughly 60 days after the court issues its final approval.
Don’t stand alone when your digital privacy is threatened by corporate security failures. You have no obligation to reach out, but taking a few moments to complete your claim form ensures your rights are protected. If you have questions about how to proceed or want to learn more about protecting your data, you can connect with an experienced attorney to discuss your legal options at no cost.
New cases and investigations, settlement deadlines, and news straight to your inbox.
