Las Vegas, Nevada – Thousands of MGM Resorts guests affected by two significant data breaches in 2019 and 2023 could be entitled to compensation, following a multimillion-dollar settlement agreement by the hospitality giant. The announcement came after a class-action lawsuit was lodged against MGM, spotlighting the vulnerabilities that exposed sensitive personal information to unauthorized access.
The cyberattacks occurred in July 2019 and then again in September 2023, during which confidential guest data was compromised. This included full names, email addresses, phone numbers, physical addresses, birthdates, and, for some individuals, more sensitive information like passport numbers, driver’s licenses, military IDs, and Social Security numbers.
The lawsuit, driven by plaintiffs like Tonya Owens, accused MGM Resorts of failing to safeguard their personal information, thereby contravening their promised privacy assurances. However, MGM Resorts has settled for a proposed $45 million without admitting any wrongdoing, a common outcome in such class-action settlements designed to cap potential lawsuits and legal expenses.
Under the terms of the settlement, affected parties who were officially notified by MGM about the breaches may qualify for varying compensation amounts. Those whose sensitive data such as Social Security numbers or military IDs were compromised could receive $75. Guests whose passport or driver’s license details were leaked may be eligible for $50, while those whose exposed information was limited to names, emails, and dates of birth could obtain $20. To claim these amounts, victims need only fill out the official form available online by June 3, 2025, without the necessity of providing additional documentation.
However, for individuals who faced financial damages as a result of these breaches—such as unauthorized charges or identity theft—an additional claim of up to $15,000 could be made, contingent on providing evidence like bank statements or police reports that illustrate the financial impact suffered.
The entire claim process will be conducted online through a dedicated settlement portal, where affected individuals can verify their eligibility, submit claims for payments, or opt out of the settlement to seek independent legal recourse. Those choosing not to participate in the settlement must notify by May 19, 2025, with the final approval hearing scheduled for June 18 of the same year in Las Vegas.
This settlement reflects a growing trend of legal actions taken against major corporations for data privacy breaches, as more individuals become vigilant about their personal information security. Similar incidents have involved other companies, leading to increased public awareness and concern over data protection practices.
While monetary compensation may not entirely rectify the potential long-term consequences of data breaches, it underscores the importance of holding corporations accountable for data privacy. MGM’s settlement serves as a crucial reminder of the ongoing risks and legal implications associated with personal data security in the digital age.
Please note that this article was automatically generated by OpenAI and might contain inaccuracies in information about people, facts, or circumstances. For corrections, retractions, or removal requests, please email [email protected].