Hospital Sisters Health System 7.6M Settlement Over 2023 Patient Data Breach
The Hospital Sisters Health System 7.6M Settlement Over 2023 Patient Data Breach settlement offers $7.60M in total, with individual payouts of TBD to eligible claimants who your personally identifiable information (pii) and/or personal health information (phi) was compromised in the hshs data breach. The deadline to file is August 4, 2026. Proof of purchase is required.
Deadline: August 4, 2026
Total amount allocated for all claims
Estimated amount per eligible claim
To claim reimbursement for documented losses (up to $5,000), submit the claim form with supporting documents showing out-of-pocket costs tied to the breach (e.g., bank/credit card statements, receipts, invoices, or other records for identity theft losses, credit-related fees, or ID replacement).
Settlement Summary
Hospital Sisters Health System (HSHS), which operates 15 hospitals in Illinois and Wisconsin, agreed to a $7.6 million settlement after a 2023 cyber incident on its network (Aug. 16–27, 2023) allegedly exposed sensitive patient data. The compromised information reportedly included Social Security numbers, health insurance details, driver’s license numbers, and other personally identifiable information—exactly the type of data that can be leveraged for identity theft and medical fraud. In healthcare, these breaches are particularly disruptive because hospitals store both financial identifiers and protected health information, and ransomware-style intrusions have become a persistent threat across the sector. The class action, In re: Hospital Sisters Health System Data Breach Litigation (Chancery Court of Sangamon County, Illinois), was filed on the theory that HSHS failed to implement “reasonable” cybersecurity safeguards that could have prevented or reduced the breach’s impact. While HSHS did not admit wrongdoing, the settlement is significant because it converts alleged harm—risk of identity theft, time spent responding, and actual out-of-pocket losses—into concrete relief: up to $5,000 for documented losses, an alternative cash payment for those without documented losses, and two years of financial monitoring with $1 million in fraud insurance. Key dates include the opt-out/objection deadline (Nov. 14, 2025) and a final approval hearing (Dec. 4, 2025), with claim submission required to receive benefits. More broadly, this case fits a growing pattern of healthcare data-breach class actions where plaintiffs argue that inadequate security controls and delayed detection created preventable exposure, and settlements commonly fund credit monitoring and reimbursements rather than litigating fault to verdict. The industry backdrop includes HIPAA’s Privacy and Security Rules (which require administrative, physical, and technical safeguards for electronic protected health information) and HHS breach-notification expectations, alongside a patchwork of state consumer-protection and data-security laws that often drive these suits. As regulators and courts increasingly scrutinize “reasonable security” in highly targeted sectors like healthcare, similar settlements reinforce the expectation that hospitals treat cybersecurity as a patient-safety and compliance obligation, not just an IT function.
Entities Involved
Related Topics
Eligibility Requirements
- Your personally identifiable information (PII) and/or personal health information (PHI) was compromised in the HSHS data breach
- The compromise occurred in the incident affecting HSHS network systems between Aug. 16, 2023 and Aug. 27, 2023
- You are a member of the settlement class (including individuals who received notice of the breach)
- To receive benefits, you must submit a timely, valid claim form by the stated deadline
Featured Investigations
Stay Updated
Subscribe to our newsletter for the latest settlement updates and news.
Important Notice About Filing Claims
Submitting false information in a settlement claim is considered perjury and will result in your claim being rejected. Fraudulent claims harm legitimate class members and may result in legal consequences.
If you are unsure about your eligibility for this settlement, please visit the official settlement administrator’s website using the link provided above. Review the eligibility criteria carefully before submitting a claim.
Class Action Champion is an independent information resource and is not affiliated with any settlement administrator, law firm, or court. We provide settlement information as a service to help connect eligible class members with legitimate settlements.
Related Settlements
Anne Arundel Dermatology Data Breach Settlement $2.4 Million for Patient Info Security Claims
Anne Arundel Dermatology P.A. agreed to pay a $2.4 million settlement to resolve allegations that a data breach exposed patients’ personal and health information. The incident occurred between Feb. 14, 2025, and May 13, 2025. Eligible class members are people in the U.S. who provided or whose information the clinic collected, received, or possessed on or before Dec. 9, 2025.
Absolute Dental Group $3.3 Million Settlement for 2025 Data Breach Losses
Absolute Dental Group LLC agreed to pay a $3.3 million class action settlement over a potential 2025 data breach affecting consumers’ personal information. The incident occurred between Feb. 19, 2025 and March 5, 2025, when unauthorized access may have exposed data. Eligible U.S. residents who received notice from Absolute Dental about the incident may claim up to $5,000 for documented losses and may also receive a pro rata cash payment, with certain California residents eligible for an enhanced amount.
Travelers PIP Settlement for New Jersey Claims Up to 70 or More for Deductible Reductions
A class action settlement totaling at least the net settlement fund (with attorneys’ fees up to $275,000 and service awards of $7,500) resolves allegations that Travelers and St. Paul improperly reduced New Jersey PIP coverage limits by counting deductibles and copayments, causing some insureds to receive less than the PIP benefits available. Eligible policyholders (and certain heirs/representatives) who received final PIP payments between April 14, 2017 and April 1, 2023 that were within $3,000 of their policy limit—but not the full limit—may receive an automatic $70 and possibly additional compensation.
MUBI $1.6 Million Settlement for California Auto-Renewal Without Notice
California subscribers of the MUBI streaming service may be eligible for a $1.6 million class action settlement over alleged auto-renewal charges without adequate notice or proper consent. The claims cover sign-ups beginning April 1, 2021 and auto-renewals occurring through May 31, 2025, as described in Cesar Cejudo v. MUBI, Inc. To be eligible, claimants must have been California residents whose subscription renewed at least once and who did not receive a full refund of renewal charges.