Anne Arundel Dermatology Data Breach Settlement $2.4 Million for Patient Info Security Claims
The Anne Arundel Dermatology Data Breach Settlement $2.4 Million for Patient Info Security Claims settlement offers $2.40M in total, with individual payouts of $5K to $100 to eligible claimants who must be a person in the united states. The deadline to file is July 8, 2026. Proof of purchase is required.
Deadline: July 8, 2026
Total amount allocated for all claims
Estimated amount per eligible claim
Online claims require the settlement claim ID from the notice. Claims seeking documented out-of-pocket losses must include supporting documentation such as receipts, invoices, or bank/credit card statements showing unreimbursed fees and fraudulent charges; police reports or other proof of fraud or identity theft.
Settlement Summary
Anne Arundel Dermatology P.A. agreed to a $2.4 million settlement after a cybersecurity incident that allegedly exposed sensitive patient information. According to the notice, unauthorized access to certain company systems occurred between Feb. 14, 2025 and May 13, 2025, affecting an estimated 1.9 million current and former patients and others. For people in the United States whose personal information or protected health information was provided to, collected by, or possessed by the practice on or before Dec. 9, 2025, the settlement creates a claim process that can provide compensation—up to $5,000 for documented out-of-pocket losses like fraud-related costs, credit freeze/unfreeze expenses, or identity theft monitoring—or an alternative estimated pro rata payment of about $100 for those without documented losses. All class members also can choose three years of medical identity and credit monitoring services, including dark web scanning, medical record monitoring, and identity theft insurance. The lawsuit was filed to challenge the adequacy of the dermatology practice’s data security and to address potential harms from the breach, including claims of negligence and unauthorized disclosure of personal and health information. While the company denied the allegations, settling is significant because it provides a structured path for thousands of affected individuals to seek relief without each person pursuing separate legal action. This kind of class action is increasingly common as healthcare organizations hold extremely sensitive data and face growing public scrutiny and enforcement around cybersecurity controls, incident response, and breach notification practices. Broader implications extend beyond one clinic: similar cases often turn on whether organizations met “reasonable” security standards for protecting protected health information (PHI), which in the U.S. typically implicate the Health Insurance Portability and Accountability Act (HIPAA) Security Rule, as well as state privacy laws and contractual obligations to safeguard patient data. In the healthcare industry, these suits also highlight that monitoring services, credit protection, and fraud resolution support are becoming standard settlement components—reflecting both regulatory expectations and patient concerns following large-scale breaches.
Entities Involved
Related Topics
Eligibility Requirements
- Must be a person in the United States
- Must have provided personally identifiable information (PII) and/or protected health information (PHI) to Anne Arundel Dermatology on or before Dec. 9, 2025
- Or must have had personal information that Anne Arundel Dermatology collected, received, or possessed on or before Dec. 9, 2025
- Class membership is tied to having data on file with the company by the Dec. 9, 2025 cutoff date
Featured Investigations
Stay Updated
Subscribe to our newsletter for the latest settlement updates and news.
Important Notice About Filing Claims
Submitting false information in a settlement claim is considered perjury and will result in your claim being rejected. Fraudulent claims harm legitimate class members and may result in legal consequences.
If you are unsure about your eligibility for this settlement, please visit the official settlement administrator’s website using the link provided above. Review the eligibility criteria carefully before submitting a claim.
Class Action Champion is an independent information resource and is not affiliated with any settlement administrator, law firm, or court. We provide settlement information as a service to help connect eligible class members with legitimate settlements.
Related Settlements
Huuuge Casino 5.8M Settlement Over In App Purchases in Social Casino Games
This class action settlement concerns in-app purchases made in the Huuuge Casino and Billionaire Casino mobile games, addressing allegations tied to those purchase transactions. The total settlement amount is not stated in the provided notice, and payouts are described as varying. The covered period includes purchases made on or before January 23, 2025. Generally, eligible individuals are players who bought virtual items or made other in-game purchases in either game during the covered timeframe.
Breckenridge Duloxetine Recall Settlement Up to 50 Million for Returned Unused Pills
This settlement provides refunds (amount varies; no single total fund is stated) for consumers who paid out-of-pocket for Breckenridge duloxetine that was later recalled and returned unused. It covers recall-related returns occurring after May 22, 2025, and offers compensation for eligible costs tied to those returned products. Generally, people who purchased Breckenridge duloxetine and subsequently returned unused recalled medication may qualify, as long as they submit a timely claim by January 1, 2028.
Tangoe US $5750 Settlement Over 2022 Data Breach Exposing Sensitive Personal Info
Tangoe US Inc. reached a class action settlement totaling $5,750 in potential benefits per claimant (up to $750 ordinary losses plus up to $5,000 extraordinary losses) over a November 2022 cyberattack that allegedly exposed sensitive personal and financial data. The settlement covers losses and time spent responding to issues occurring from November 2022 through June 3, 2026. Eligible individuals are U.S. residents (and their successors/assigns) whose information was impacted by the Tangoe US security incident.
Centrelake Medical Group 3,500 Settlement for 2019 California Patient Data Breach
Centrelake Medical Group has agreed to a class action settlement providing payments ranging from $20 to $3,500 for eligible individuals impacted by a data incident. The case concerns alleged exposure of patient information tied to notices sent in April 2019 (issue timeframe: April 2019). Generally, people who were Centrelake Medical Group patients with a California address and who received a breach notification may qualify to submit a claim by June 12, 2026.