Reuters reported Friday that genetics testing firm 23andMe has agreed to pay a $30 million settlement after a hack uncovered 6.9 million clients’ private info to the darkish net. The corporate can even pay for three years of safety monitoring for affected clients.
The category motion lawsuit alleged that 23andMe didn’t alert clients with Ashkenazi Jewish and Chinese language ancestry that their private knowledge was posted for sale and that they could have been specifically focused within the April 2023 breach.
Associated: 23andMe Hackers Promoting Stolen Consumer Data, Together with DNA Profiles of ‘Celebrities,’ on Darkish Net
23andMe mentioned the settlement was “fair, adequate, and reasonable” in a court docket submitting, per Reuters.
In a Dec. 2023 weblog submit addressing the hack, the corporate mentioned the assault began in April 2023 and lasted about 5 months. On the time, 23andMe had round 14.1 million clients in its system. The corporate mentioned the hack affected at the least half of the database.
Who’s eligible to say cash?
Based on court docket paperwork, affected customers can declare anyplace from $100 as much as $10,000 for probably the most “extraordinary” circumstances. If the settlement will get remaining approval, directions can be supplied on find out how to file for reimbursement.
Prospects in Alaska, California, Illinois, and Oregon are topic to “genetic privacy laws with statutory damages provisions” and might solely declare $100, per PCMag.
