Consumers who received a notice about the December 2023 MedQ data breach may be eligible to claim up to $5,000 from a class action settlement.
MedQ Inc. agreed to resolve a lawsuit alleging it failed to properly protect personal and health information that was exposed during a cyberattack on or around December 26, 2023. The breach involved unauthorized access to files containing:
- Names
- Social Security numbers
- Driver’s license numbers
- Dates of birth
- Health and insurance information
- Diagnoses
- Lab results
Who Is Eligible?
All U.S. residents who received a data breach notification letter from MedQ Inc. are included in the settlement class.
How Much Can Class Members Receive?
All class members can enroll in two years of credit monitoring from all three major credit bureaus, which includes:
- Real-time credit monitoring
- Dark web scanning
- Public records monitoring
- Medical identity monitoring
- Identity theft insurance
- Access to a fraud resolution specialist
Class members may also choose one of the following cash payment options:
Option 1: Reimbursement for documented losses and lost time (up to $5,000 total)
Eligible expenses include:
- Losses from identity theft or fraudulent activity
- Costs for credit reports, credit monitoring, or freezing/unfreezing credit
- Replacement of identification documents
- Postage or similar administrative expenses related to the breach
Documentation—such as receipts or bank statements—is required. Self-written notes may support a claim but cannot stand alone as proof.
Class members may also claim up to three hours of lost time at $30 per hour (maximum $90), within the $5,000 cap. An attestation describing the tasks performed (for example, changing passwords or investigating suspicious activity) is required.
Option 2: Alternative cash payment
Class members who do not have documentation or prefer a simpler option may claim a one-time payment of $50. No proof is required.
How to File a Claim
Class members may file:
- Online using the unique ID and PIN listed in their settlement notice
- By mail or email using the printed claim form
Mailing address:
MedQ Data Breach Settlement
c/o Settlement Administrator
P.O. Box 25226
Santa Ana, CA 92799-9958
Email: info@MedQIncDataSettlement.com
Class members who cannot locate their ID and PIN should contact the administrator at 833-417-4905 or via email.
Documentation Requirements
- Documented loss claims require receipts, statements, or other proof of expenses
- Lost time claims require an attestation describing actions taken
- The $50 alternative payment requires no documentation
Payout Options
- PayPal
- Venmo
- Zelle
- Virtual prepaid card
- Paper check
Settlement Fund Breakdown
The settlement fund includes:
- Settlement administration costs: Up to $100,000 (estimated)
- Attorneys’ fees and costs: Up to $350,000
- Service awards: Up to $1,000 per class representative
- Payments to class members: Remaining funds
Key Dates
- Opt-out deadline: December 1, 2025
- Claim filing deadline: December 15, 2025
- Final approval hearing: December 18, 2025
When Will Payments Be Issued?
Payments will be issued no later than 30 days after all appeals are resolved or 75 days after final approval—whichever occurs later.
Why Was This Settlement Reached?
The lawsuit claimed MedQ Inc. failed to safeguard sensitive information that was accessed during a targeted cyberattack in December 2023. MedQ denies wrongdoing but agreed to settle to avoid the burden and uncertainty of continued litigation.
