Subscribe To Our Newsletter
Subscribe To Our Newsletter
Nth Degree, Inc. has agreed to a class action settlement to resolve a lawsuit stemming from a December 2024 data breach that exposed the personal info of nearly 39,000 people.
Event management company Nth Degree, Inc. has agreed to a class action settlement to resolve allegations that it failed to protect highly sensitive personal and financial data from a cyberattack. The deal, which received preliminary court approval on April 1, 2026, aims to compensate nearly 39,000 everyday people whose private information was compromised. The lawsuit stemmed from a cyberattack that occurred over a week-long period in mid-December 2024, exposing consumers to identity theft and fraud. Under the terms of the newly finalized agreement, affected individuals can now file claims to receive substantial cash reimbursements, no-proof cash payouts, and long-term credit monitoring services.
The initial class action lawsuit, filed in December 2025 in a Georgia court, alleged that the trade show and event management company failed to maintain reasonable cybersecurity protocols to protect information in its care. According to court documents, unauthorized hackers managed to infiltrate Nth Degree’s corporate networks between December 12 and December 20, 2024. During this window, the cybercriminals successfully accessed and acquired the private data of thousands of individuals.
The scope of the exposed data was exceptionally broad and deeply personal. The compromised files included first and last names, home addresses, dates of birth, Social Security numbers, state identification or driver’s license numbers, bank account numbers, and sensitive health information. Because this particular combination of data provides identity thieves with everything needed to open fraudulent accounts, buy products, or commit medical fraud, the lawsuit argued that affected consumers faced an immediate and ongoing threat to their financial security.
To help everyday people recover from the fallout of the data breach, the settlement offers an extensive tiered reimbursement system. Class members who spent their own money dealing with the security breach can file a claim to receive up to $3,500 for documented out-of-pocket losses. This category covers any credit reports or credit monitoring plans purchased between December 12, 2024, and July 30, 2026, as well as bank fees, long-distance phone charges, postage, and gasoline expenses directly related to managing the breach.
Furthermore, the settlement recognizes that fixing the mess left by identity thieves takes up valuable personal time. Class members can claim compensation for up to four hours of lost time spent addressing the breach, paid out at a rate of $20 per hour (for a total of up to $80). To qualify for this time reimbursement, you must have spent at least one hour responding to the incident. To secure any of these documented-loss payments, claimants are required to submit tangible proof, such as receipts, invoices, or bank account statements.
For affected individuals who did not incur significant out-of-pocket expenses or prefer a simpler claims process, the settlement provides an alternative path. Instead of tracking down receipts and documenting losses, class members can choose to file a claim for a flat $50 cash payment. This alternative payout requires absolutely no proof of loss or documentation, making it a quick and accessible option for everyday people looking to claim their share of the settlement fund.
Additionally, the settlement features an extra layer of financial recovery for specific consumers based on state-level digital privacy rules. If you were a resident of California at the time the Nth Degree data breach took place in December 2024, you can claim an additional $100 cash payment on top of your other benefits. This extra payout is structured to address specific statutory violations linked to the state’s rigorous data privacy standards.
The lawsuit relied heavily on a strong combination of state consumer protection and privacy regulations to force corporate accountability. Specifically, the complaint accused Nth Degree of violating the California Unfair Competition Law, the California Consumer Privacy Act (CCPA), and the California Consumer Records Act. These landmark digital privacy laws mandate that corporations must implement and maintain robust security procedures to protect the digital identities of everyday consumers.
By failing to block unauthorized access to Social Security numbers and bank routing files, the lawsuit argued Nth Degree directly breached its legal duties under these frameworks. While Nth Degree has agreed to pay the settlement to end the protracted legal battle, the company has not admitted to any legal wrongdoing or technical negligence.
Beyond direct financial compensation, the Nth Degree settlement provides necessary tools to safeguard your digital identity moving forward. All class members, regardless of whether they choose the documented loss reimbursement or the flat-rate cash option, can submit a claim to receive three full years of single-bureau credit monitoring services.
This complimentary security package is designed to monitor and alert you to suspicious activities on your credit profile. The service includes robust dark web monitoring to check if your personal information is being traded online, identity theft insurance to cover future financial fraud, and professional identity recovery assistance to help you restore your credit if your data is ever misused by bad actors.
When data breaches compromise your personal information, you don’t stand alone. Class action settlements exist to help everyday people reclaim control over their digital security without paying a cent out of pocket.
You may be eligible to file a claim and receive benefits under this settlement framework if you fit the following criteria:
You are an individual residing in the United States whose private personal information was accessed or acquired during the Nth Degree data breach in December 2024.
This explicitly includes all 38,953 individuals who were sent an official, written notice of the cyberattack by the company.
New cases and investigations, settlement deadlines, and news straight to your inbox.
