-
The University of Minnesota just agreed to pay out $5 million after a data breach from 2021.
-
Anyone connected to the university between 1989 and 2021, whether as staff, student, or applicamnt, might be eligible for settlement in form of cash or credit monitoring
-
The deadline to file a claim is December 24, 2025.
The large-scale breach of the University of Minnesota’s database has now resulted in a multi-million dollar settlement. Anyone whose personal info was held in the University’s portal as of August is entitled to a cash payment.
The class suit said the university failed to protect sensitive information. Now it is paying $5 million as a settlement to those affected.
The University of Minnesota Data Breach Explained
It all kicked off with a massive data breach in the university’s Legacy Data Warehouse. Hackers got their hands on all sorts of sensitive information—names, Social Security numbers, driver’s license details, birthdates, contact info, and even academic records. And honestly, it wasn’t just a few people affected.
This hit a massive group—students, employees, and anyone who had a connection to the school during the time between 1989 and 2021.
But here’s the thing: the university didn’t actually announce the breach until 2023, even though the data was exposed long before that in 2021.
The $5 Million Class Action Settlement
When the news finally broke, people hit back. They sued the university, saying the school should’ve done a better job protecting their information. The plaintiffs argued that the security just wasn’t good enough.
They also said the university delayed informing them. This delay allegedly denied people a chance to protect themselves. They could not quickly guard against identity theft.
The University of Minnesota has not admitted any wrongdoing. But it agreed to a $5 million class action settlement. The goal is to resolve all these data breach claims.
What Can Class Members Receive?
Class members have two main options under this settlement. They can choose a cash payment or credit monitoring.
Those who submit a valid claim form can receive a $30 cash payment. This amount could change if too many people file claims.
Payments may be reduced on a pro rata basis in that scenario. This ensures the settlement fund is shared fairly.
Class members can also select 24 months of dark web monitoring. This service helps track if your data is being sold online.
You can actually choose both benefits if you want. The claim form allows you to select your preferred option.
Important Deadlines and How to File a Claim
Class action members must act quickly to get a payment. If you’re part of this group, don’t forget the deadlines. You must file a claim for benefits no later than December 24, 2025.
If you wish to opt-out of the Settlement or have objections, you must act by December 29, 2025. The Court is scheduled to conduct a hearing on the final approval portion of the Settlement on January 28, 2026.
To file a claim, all claimants are to visit the official settlement website UofMDataSettlement.com.
Those filing for claims are to provide their name, address, email, and phone number.
No complex proof of purchase is necessary. They just need to confirm you are part of the affected class.
The Bigger Picture of Data Security
This settlement highlights a growing problem. It’s no surprise that schools are big targets for hackers; they store loads of sensitive information.
This University of Minnesota breach case shows just how much damage poor security can cause. And that two-year delay before the university told people about the breach is the major problem. It shows that quick, honest communication matters because every month of silence ups the risk for identity theft.
The settlement is a reminder to always keep an eye on your accounts. A single fallout can last longer than you think.
