What Law Covers Data Breaches?

In the face of online security threats, Ohio enacted the Data Protection Act (DPA), which provides an incentive-based program for businesses to strengthen their existing cybersecurity systems and practices. The DPA also provides specific steps that businesses must take in order to qualify for safe harbor under the act. The DPA aims to encourage businesses to reach higher cybersecurity levels through voluntary action. By enacting the DPA, Ohio became the first state in the U.S. to implement a law that provides a data breach safe harbor for business entities. Individuals can be ruined financially, and deserve proper online security measures. But many companies choose not to protect consumer privacy, and thus face class action lawsuits.

What Kind of Personal Data is Valuable?

Hackers can do a lot with unique personal data like a Social Security number. The most common data stolen includes: Names Phone numbers Addresses Social security numbers Genetics & DNA Medical data Health insurance information Bank and credit card information Driver’s license numbers Health app data Protecting your data and information is important. Even the most seemingly small or insignificant piece of data could be used to gain access to more of your personal accounts.

What Happens to Stolen Data?

The criminals behind most data breach events are after money. Once they are able to obtain a large volume of personal information, they usually put it up for sale on various online forums, typically on the dark web. The dark web is a hidden layer of the internet, inaccessible on normal search engines–specific software is required to access it. The dark web is popular with cybercriminals as it offers anonymity and is mostly untraceable. Once data is obtained, criminals can use it to file fraudulent tax returns, pay for medical costs, file for unemployment, open credit card accounts, and apply for various loans.

How Serious is a Data Breach? How Much is Your Data Worth?

According to Experian, some common prices for pieces of information sold on the dark web include the following: Social Security number – $1 Online payment information – $20 – $200 Credit or debit card – $5 – $110 Drivers license number – $20 Loyalty accounts – $20 Diplomas – $100 – $400 Passports – $1000 – $2000 Subscription services – $1 – $10 Medical records – $1 – $1000 While such information is associated with various selling prices, the real damage is in the way it is used when sold. One item of information could lead to very costly losses.

What Should You Do if You Are a Victim of a Data Breach?

After your data is stolen once, you may always be at risk for future identity theft. But, you can protect yourself with identity theft coverage and subscribing to an ID Theft Recovery service. You can also contact a lawyer for advice on further steps you can take to cover yourself. Even if you feel like your information is safe for now, once personal information is stolen and leaked to the dark web, the fraud risks remain as long as that information remains at large. It’s important to stay alert and watch for signs of fraudulent activity. If you happen to see unusual activity on your accounts, be sure to take the appropriate actions to help protect yourself. If you want more information on what to do when a data breach impacts you, visit the FTC identity theft website. After a data breach turns your life upside down, remember that you are not the only victim. There are millions of Americans who suffer from data privacy events every year. In turn, they may seek legal action for compensation and to hold companies accountable for negligent security systems. If you want more information on current data breach litigation and how to file a data theft class action lawsuit, contact The Lyon Firm at (513) 790-4360 for a free and confidential case review. The Lyon Firm is actively involved in numerous data privacy cases and has experience filing data security claims on behalf of plaintiffs nationwide.

Can You Sue for a Data Breach?

Companies who collect and store data have a duty to protect personal information to the best of their ability. When they are negligent, and a data theft incident occurs, they may be liable for the following: Improperly monitoring data security systems for existing intrusions Not ensuring that vendors with access to computer systems and data employ reasonable security procedures Improperly training employees in handling emails containing personally identifiable information (PII) and personal health information (PHI) Failure to maintain adequate email security practices Failure to implement technical policies and procedures to allow electronic PHI access only to individuals or software programs granted access rights Failure to implement procedures to review records of information system activity regularly, such as audit logs, access reports, and security incident tracking reports Improperly protecting against reasonably anticipated threats or hazards to the security or integrity of electronic PHI An experienced class action attorney can determine if you are eligible to file a data breach lawsuit or join a class of plaintiffs. A lawyer can assist in answering the following: Did the company fail to adopt security safeguards that would have prevented a security breach? Did the company notify customers as soon as it learned of the incident? Did the company provide a complete list of all individuals affected by the data breach? Did the company provide security in line with industry standards? Failure to take any of these steps can result in legal action against a business entity.

Is My Personal Health Data Protected?

The Federal Trade Commission has issued a Policy Statement instructing health app and connected device companies to comply with existing data breach notification rules. A “breach of security” under the new regulation includes the acquisition of identifiable health information without the authorization of the individual. A “breach of security” does not only mean a cybersecurity mishap, or the result of “nefarious activity,” but also prohibits the sharing of protected data without the consent of the user. Upon discovery of a data breach, a health entity is obligated to notify each affected United States citizen, as well as the FTC. Privacy laws are meant to protect patients’ personal health data, and when institutions fail to protect personal data they may be sued for damages. In recent years much health data has been leaked and stolen, causing significant damages to plaintiffs who have taken legal action.

What Is a Class Action Lawsuit?

A Class Action is a lawsuit brought by an individual on behalf of all other similarly situated individuals. Rule 23 of the Federal and State Rules of Civil Procedure allows for Class Action lawsuits to resolve disputes in an efficient format. Class Actions are typically filed when the amount of money in dispute for a single plaintiff would not justify litigating the case, but where the amount of damages of the entire class of Plaintiffs would justify the cost of litigation. Without class actions, large corporate defendants would be able to cause small amounts of harm over a large group of individuals without any risk of monetary penalty.

What Are Class Action Requirements?

In order for a case to be certified as a Class Action, the Court must determine that the case is appropriate for class action treatment under Rule 23. There are different elements depending on whether the case is seeking monetary or injunctive relief. In general, the Court must find the following elements are satisfied: Numerosity: The proposed class must be so numerous that simply joining the individual plaintiffs would be impractical. Generally, the class size should exceed 100 individuals. Common Questions of Law or Fact: The facts and/or legal questions in the dispute must be common to all class members. This does not mean all facts or issues must be identical, but the primary facts and law that will determine the issue in dispute must be common among all class members. Typicality: The named Plaintiff in the case must have the same facts and legal issues as the class they are proposing to represent. If the Plaintiff’s individual case involves issues of fact or law unique to that Plaintiff and are irrelevant to the ultimate issue, class certification may be denied by the Court. Plaintiff/Counsel Adequately Represents the Class: The Court must find that the Plaintiff and Plaintiff’s Counsel are competent and will protect the class’ interests. Predominance: Common questions of fact must predominate over individual facts. Superiority: The Class Action is a more efficient and fair means of resolving the dispute. The Court will look at the following factors when making this determination: (1) Class Member interest in maintaining a separate action; (2) the extent of any litigation already begun by other class members; (3) desirability or undesirability of litigating the case in a particular Court ; and (4) difficulties in managing the class. If you have any questions about class action requirements, an attorney can provide you with answers and insights.

How Much Can You Sue A Company For Data Breach?

Settlement amounts depend on various factors, such as how many consumers were affected. The following cases provide a picture of how large many of these breaches can be, and the amount of payment involved to consumers: Capital One announced that 100 million credit card accounts were hacked and personal information was stolen. Attorneys are investigating whether bank account info, social security numbers and other sensitive information was taken. Yahoo has been a target in class action data breach lawsuits after tens of millions of user accounts were compromised due to ineffective site security. The company paid more than $117 million to settle the case. Equifax admitted that 43 million American accounts were hacked and leaked information such as names, birth dates, social security numbers and phone numbers. Some consumers also had their tax IDs exposed. Equifax paid a settlement of over $700 million. Home Depot paid $19.5 million to consumers in a data breach settlement. Home Depot agreed to pay $25 million to banks and credit card companies in the following year. Facebook announced in 2018 that a data breach leaked information from over 50 million users. Class action lawsuits are pending. The social media company also faces various privacy lawsuits and settled one recently involving facial recognition technology for over $500 million. Companies big and small today face the reality that it is likely that their network will be breached. As a result, they must do all they can to prevent attacks. If they fail to protect private information, class action data breach lawsuits can be filed.

What Industries Are Commonly Targeted in Data Breaches?

HEALTHCARE SECURITY BREACH The rise of healthcare hacks have left millions of patients vulnerable to stolen medical records and identity theft. The vast majority of hospitals and health insurance companies have reported medical record data breaches, and although it is unknown what can be done with medical data, patient’s financial data and personal information can easily be used in nefarious ways. With the rise of electronic medical data storage in place of old paper files, there are more and more instances of healthcare related security breach incidents and subsequent class action lawsuits. HOTEL DATA BREACH Hotels are prime targets in data theft attacks because they compile so much personal information, including names, email addresses, phone numbers, passport numbers, photo IDs, and credit card information. Hotel data breach incidents can be devastating to affected victims. Marriott was a good example of a hotel chain that failed to meet consumer security expectations when the company was hacked and customer information for 300 guests was stolen. TRAVEL SITE DATA BREACH A data breach targeting Expedia.com and other affiliated vacation-booking websites exposed tens of millions of personal records. As a result, a data breach class action lawsuit was filed against Expedia and the Amazon technology that the company relies on to keep their data protected. Plaintiffs say the companies involved in the breach failed to adequately protect customers’ information, then left it to the media to eventually inform affected consumers. The data breach was first reported in November 2020, involving Expedia and Hotel.com services and Amazon Web Services technology. An investigation found a “misconfigured” cloud-based server, compromising sensitive personal information. Experts estimate at least 10 million records dating back to 2013 could have been exposed, including credit card numbers, home addresses, passport numbers, and driver licenses. RESTAURANT DATA BREACH Restaurants have been hacked in recent years, and most have admitted they were not prepared and do not have the ability to ward off such data theft attacks. Arby’s, Checkers, and many others have been the subject of attacks and subsequent class action data privacy lawsuits. Consumers and restaurant customers have a right to use their credit card and assume their personal information is protected by a company.

Have There Been Any Auto Data Breach Incidents?

To add to other privacy concerns for American consumers, automobile manufacturers are allegedly collecting personal data at a rapid pace. Unfortunately, there have already been security breaches involving automakers. General Motors (GM) announced in May 2022 that it was hit by a credential stuffing attack that exposed customer information and allowed hackers to redeem rewards points and gift cards. GM said that they detected the malicious login activity and began a data theft investigation. GM posted a data breach notification and sent notices to affected customers. A credential stuffing attack is possible when credentials are obtained from a previous data breach. Such data was likely not obtained from GM but a third party. The stolen personal data of affected GM customers includes full names, email addresses, home addresses, usernames and phone numbers, last known and saved favorite location information, avatars and photos, profile pictures, search and destination information, and Wi-Fi hotspot settings. Recent reports note that some modern cars collect a vast amount of personal data, and may track where we live, who we text, and what restaurants we visit. Collected data isn’t delivered to car owners, but rather to the automakers, or third parties willing to pay for the data. The data generated by cars may be worth billions of dollars each year.

Why Are Data Breach Cases Important?

Without data breach class actions, large corporate defendants would be able to cause small amounts of harm over a large group of individuals without any risk of monetary penalty. Holding companies accountable for poor cybersecurity and data theft incidents helps ensure that consumers are better protected in the future. Compensation in a data breach lawsuit may cover: Unauthorized charges Damage to credit Cost of replacing credit cards Costs of credit monitoring Losses due to investigation time and expenses Loss of business opportunities Damage to reputation Emotional distress The amount of damages recovered may be directly linked to the attorney’s skill in handling your case. Therefore, you should choose an attorney with the appropriate background and experience in litigating such cases. Contact us at (513) 790-4360 to schedule a free consultation to discuss your rights.

What Steps Can You Take If You Are A Victim Of A Data Breach?

If you were affected by a data breach, you should: Get confirmation of the data breach and collect as many details about the incident as possible. Contact an attorney to investigate the complex litigation involved in security breach lawsuits. Try to find out what information was exposed and protect yourself as much as possible. Talk to an attorney before accepting any settlement directly from a company. Monitor your accounts and personal information closely. Contact a lawyer if you have questions about your legal rights after a breach.

Can I Sue A Company For Releasing My Personal Information?

Yes, in most cases. Each case is different, but some recent lawsuits have proven to be quite valuable. In one data breach suit, plaintiffs obtained a $17.5 million settlement against The Home Depot due to a data breach. The settlement resolves a multistate data breach which exposed the payment card information of approximately 40 million Home Depot consumers. The Home Depot data breach made the company’s self-checkout point-of-sale system vulnerable. In addition to the $17.5 million settlement, The Home Depot has agreed to improve network security and maintain data security practices in order to strengthen its data security program and protect the personal information of consumers.

Who Is Liable For A Data Breach?

Under current privacy law the firm or organization that is storing user data is responsible for data breaches and will pay any fines or damages that are the result of legal action. The actual data holder—an organization that provides cloud storage—is not usually legally implicated or held responsible in litigation.

How Do Data Breaches Occur?

The majority of data breach incidents are due to hackers manipulating outdated or negligent network security systems. Outside threats pose personal data risks for consumers, though there is also a risk with poor internal security and cloud-based data networks. Some common ways data can be compromised include: Exposing data in code banks Leaking data from misconfigured data buckets Expired security certificates Storing data with unsecured third party vendors Relaxed email security standards Ransomware attacks Malware attacks Phishing attacks If you are unsure about the status of your personal data, contact The Lyon Firm at (513) 790-4360. We can help you determine if a data breach has occurred and can advise you on what your next steps are.

What should you do following a data breach?

Following a data breach incident, victims should consider talking to a legal expert, and move quickly to take the following steps to help prevent identity theft and fraud: Confirm the data breach by contacting the “breached” company Learn exactly what kind of personal data was compromised Monitor your accounts for fraudulent activity Change your logins and passwords Keep a detailed record of suspicious activity Contact your bank and cancel credit cards if they have been leaked Stay alert for signs of future identity theft Sign up for a credit monitoring service

Data Breach Attorney

Was your data stolen? Let our lawyers help you reclaim what’s yours.

Request a No-Cost & Confidential Consultation

Nationwide Success

Protect Your Privacy

Investigating Personal Data Theft & Data Misuse Claims

In today’s digital age, protecting personal information is more important than ever. Data breaches can have far-reaching consequences, causing emotional distress, financial turmoil, and a profound invasion of privacy. If you or a loved one has fallen victim to a data breach, you need a skilled and compassionate attorney who will fight tirelessly on your behalf.

Super Lawyers Badge

At The Lyon Firm, we understand the profound impact that data breaches can have on individuals and families. We are committed to helping you navigate the complex legal landscape, seek justice, and pursue compensation for the harm you have suffered.

With our nearly 20-year background in data breach litigation, we stand ready to advocate for your rights and provide the support you need during this challenging time. Reach out to our firm today online or by calling (513) 381-2333 to learn how our experienced attorneys can assist you in seeking redress for data breach-related damages.

We are here to offer guidance, answer your questions, and provide the legal representation necessary to hold responsible parties accountable. Your privacy matters, and we are dedicated to protecting it. Your journey towards justice begins here.

“I have nothing but positive things to say about this law firm and Mr. Lyon. I am the kind of person who has tons of questions, and they were amazing at answering them all. I am very grateful for all the hard work they have done and consider them a trusted resource at this point. If I could give 10 stars, I would!”

– Michael H. | Client

What Is a Data Breach?

A data breach happens when private, sensitive, or confidential information is accessed, shared, or stolen without permission, either intentionally or unintentionally.

For example, an unintentional data breach can occur when hackers break into a company’s computer systems. Meanwhile, an intentional data breach would involve someone inside the organization sharing information in a way they shouldn’t.

These breaches often target companies, hospitals, schools, and even government agencies. The goal is usually to steal personal data that can be used for fraud or identity theft. In many cases, people don’t even know their information has been exposed until long after it happens.

What Kinds of Data Can Be Stolen in a Breach?

Cybercriminals often target personally identifiable information (PII) or personal health information (PHI) because these details can be used to steal your identity or carry out other types of fraud.

Types of information that may be collected in a data breach include:

Full legal name
Social Security number (SSN)
Date of birth
Home and mailing address
Email address
Phone numbers
Credit card or debit card numbers
Bank account and routing numbers
Login credentials (usernames and passwords)
Medical and health records
Health insurance information
Driver’s license or other government-issued ID numbers

CONTACT THE LYON FIRM TODAY

Please complete the form below for a FREE consultation.

ABOUT THE LYON FIRM

Joseph Lyon has 17 years of experience representing individuals in complex litigation matters. He has represented individuals in every state against many of the largest companies in the world.

The Firm focuses on single-event civil cases and class actions involving corporate neglect & fraud, toxic exposure, product defects & recalls, medical malpractice, and invasion of privacy.

NO COST UNLESS WE WIN

The Firm offers contingency fees, advancing all costs of the litigation, and accepting the full financial risk, allowing our clients full access to the legal system while reducing the financial stress while they focus on their healthcare and financial needs.

How Do I Know If I Was the Victim of a Data Breach?

Sometimes, it’s easy to discover that you were the victim of a data breach. However, other times you may not find out until it is far too late. Companies are supposed to let you know if your data was exposed, but notifications can be delayed or even missed. That’s why it’s important to know the signs.

You may find out your data has been compromised in the following ways:

You Receive Communications from a Company: Most organizations are required by law to tell you if your information was included in a breach, either through an email or a letter.
Strange Charges to Your Bank Account: If you see purchases you didn’t make on your credit card statements, it could be a sign that someone’s using your stolen information.
You’re Notified of Accounts You Didn’t Open: Someone may use your data to open new credit cards or take out loans, and you’ll likely receive a notification from a bank.
Your Passwords Don’t Work: If your passwords no longer work on familiar sites, then it could indicate that someone got into your accounts and changed login details.

When Should I File a Data Breach Lawsuit?

These days, it can feel like data breaches are happening all the time, from big companies like Facebook to services like Ticketmaster. With so many in the news, it can be easy to become desensitized. But just because data breaches are frequent, it doesn’t mean they aren’t dangerous.

When your personal information is exposed, it’s much more than a simple inconvenience. It can upend your life in many different ways, and you may consider working with data breach lawyers if:

You suffered financial losses because of the breach, like fraudulent charges or drained bank accounts.
Your identity was stolen and used to open new accounts, take out loans, or file fake tax returns.
You experienced emotional distress or harm related to the misuse of your private information.
The company failed to notify you in a timely manner after the breach, violating your right to know.

In a data breach, you lose so much more than your personal data. It can compromise the trajectory of your life going forward.

Recovering from identity theft isn’t quick or easy. It can take months, sometimes even years, to clear your name, repair your credit, and undo the financial harm. You may have to deal with debt collectors, dispute charges, or prove over and over again that you’re not responsible for someone else’s actions.

When a data breach disrupts your life in ways that you might not expect, contact The Lyon Firm online or by calling (513) 381-2333 today.

What Kind of Damages Are Available in a Data Breach Settlement?

In a data breach lawsuit, individuals who have been harmed may be eligible to pursue various types of damages, depending on the circumstances and the applicable laws. These damages are designed to compensate the victims for the harm they’ve suffered due to the data breach.

Here are some common types of damages that may be available in a data breach lawsuit:

Direct Financial Losses: This covers any out-of-pocket expenses incurred as a result of the data breach, such as unauthorized charges on credit cards or bank accounts.
Identity Theft and Fraud-related Costs: This includes expenses related to identity theft, such as credit monitoring services, legal fees, and costs associated with reclaiming one’s identity.
Loss of Income: If the breach leads to loss of income due to fraud or identity theft, victims may seek compensation for the wages they would have earned.
Emotional Damages: Data breach victims may also be eligible for non-monetary damages, which are intended to compensate for emotional distress, loss of privacy, and other intangible harm resulting from the breach.
Punitive Damages: In some cases, if the responsible party’s conduct was particularly egregious, willful, or negligent, a court may award punitive damages to punish the wrongdoer and deter future misconduct.

It’s important to note that the availability and extent of damages can vary depending on the jurisdiction and the specific facts of the case.

Discuss your situation with an experienced attorney to understand the full scope of damages available to you in your particular data breach case.

Over 91 million people were affected by data breaches in early 2025, a 26% increase from last year, even though the number of reported hacks stayed about the same.

What Does a Data Breach Lawyer Do for Your Case?

A digital privacy lawyer plays a crucial role in protecting your rights and interests when it comes to issues related to data privacy, cybersecurity, and digital information.

Here are some of the key responsibilities and actions that data breach lawyers can take on your behalf:

Evidence Collection: Your attorney will gather and analyze evidence to support your case, which may include documents, digital records, witness statements, and expert testimony. This is crucial in establishing the facts and proving your claims.
Negotiation and Settlement: Many data breach cases are resolved through negotiation and settlement. Your lawyer will work with the opposing party to reach a fair settlement that compensates you for your losses and protects your interests.
Litigation: If a settlement cannot be reached or if it’s in your best interest to go to court, your attorney will initiate and manage the litigation process. This includes filing legal documents, presenting your case in court, and advocating for your rights.

In a rapidly evolving digital landscape, having a knowledgeable data breach attorney by your side is essential to protect your rights and interests in cases involving data breaches, privacy violations, or cybersecurity issues.

Plus, a Martindale-Nolo survey found that over 90% of people received a settlement or award with the help of a lawyer, compared to only about 50% of those who managed their claims alone.

Recent Data Breach Cases

Blytheco Data Breach Lawsuit Guide | Learn How The Lyon Firm Can Help

December 5, 2025

Harbor Regional Center Data Breach 2025: California Families Deserve Answers and Compensation

November 27, 2025

TEAM Companies Data Breach Lawsuit Guide | Payroll & Employment Data Exposure, California Victim Rights, and How The Lyon Firm Can Help

November 24, 2025

Optima Tax Relief Data Breach

November 24, 2025

GlobalLogic Data Breach Investigation

November 12, 2025

Goglia Nutrition – FuturHealth Data Breach Investigation

November 7, 2025

Why Hire The Lyon Firm: Accomplished Data Breach Attorneys

When your personal data is mishandled, misused, or stolen, you deserve more than just an apology. You need a legal team that knows how to hold companies accountable and fight for meaningful results. At The Lyon Firm, we have dedicated our careers to doing just that.

Our firm has represented thousands of clients from all 50 states in a wide range of data breach and privacy cases. This includes hospital data breaches, failures in data security, consumer data misuse, and violations of the Telephone Consumer Protection Act (TCPA). We have successfully brought cases against some of the largest corporations in the world, securing millions for our clients, including:

$49.8 Million Settlement: Co-lead in data breach class action involving over 300,000 medical patients; settlement included monetary relief and expanded identity theft protection.
$1.75 Million Settlement: Co-lead in class action over ransomware attack on an Ohio hospital that exposed the personal and health information of 216,478 patients.

Contact The Lyon Firm today by filling out our quick online form or calling (513) 381-2333 if your data has been exposed or misused. We are here to help you take back control.

CONTACT THE LYON FIRM TODAY

Data Breach Lawsuit FAQs

Who Can File a Data Breach Lawsuit?

Anyone affected by a data breach may have the right to file a lawsuit, such as individuals, businesses, or organizations that have suffered harm due to the breach.

What Types of Organizations Can Be Sued for Data Breaches?

Any organization or entity that collects and stores personal or sensitive information can be held liable for a data breach, including businesses, banks, credit unions, food banks, lending companies, universities, apps, healthcare providers, government agencies, and online service providers.

Should I Join a Class Action Lawsuit or File an Individual Lawsuit?

Whether to join a class action lawsuit or file an individual lawsuit depends on the circumstances of the breach and your specific damages. Your attorney can help you determine the most suitable option for your case.

Can I Sue After a Crypto Exchange Security Breach?

Due to a vast network of unsecured crypto exchanges and crypto holding companies targeted in cyberattacks, many individuals lose huge amounts of their savings and wealth. These data breach incidents are unique, and you should contact an attorney to understand your rights and paths for legal recourse. Many crypto companies are based offshore to avoid more stringent regulations and laws, but some may be held accountable when a crypto theft event occurs.

Our Recent Data Breach Settlements

We work with law firms across the country to provide the most resources possible and to build your case into a valuable settlement.

Henderson v. Reventics, LLC

$8,125,000

Joe Lyon was appointed co-lead class counsel in consolidated data breach action impacting over 4.2 million healthcare consumers; Final approval granted for $8,125,000 non-reversionary common fund.

Navvis & CO, LLC Data Breach Litigation

$6,500,000

Joe Lyon was appointed co-lead counsel in data breach impacting over a million patients; Motion Practice and Mediation. Final approval in parallel state court action for $6,500,000 common fund.

Owens v. US Radiology Specialist, Inc.

$5,050,000

Settlement Class Counsel; Final Approval granted for $5,050,000 million non-reversionary common fund for 1.3 million consumers.

Devine v. Health Aide of Ohio

$12,500,000

Appointed co-lead class counsel in consolidated data breach class action involving 141,149 medical patients; Final Approval granted for a claims made nationwide settlement providing monetary benefits and additional identity theft protection valued at over $12,500,000.

Request A Free Consultation

- Answer a few general questions.
- A member of our legal team will review your case.
- We will determine, together with you, what makes sense for the next step for you and your family to take.

Discover the Ways We Can Help

Data Breach Attorney

Protect Your Privacy

Investigating Personal Data Theft & Data Misuse Claims

What Is a Data Breach?

What Kinds of Data Can Be Stolen in a Breach?

CONTACT THE LYON FIRM TODAY

ABOUT THE LYON FIRM

NO COST UNLESS WE WIN

How Do I Know If I Was the Victim of a Data Breach?

When Should I File a Data Breach Lawsuit?

What Kind of Damages Are Available in a Data Breach Settlement?

What Does a Data Breach Lawyer Do for Your Case?

Recent Data Breach Cases

Blytheco Data Breach Lawsuit Guide | Learn How The Lyon Firm Can Help

Harbor Regional Center Data Breach 2025: California Families Deserve Answers and Compensation

TEAM Companies Data Breach Lawsuit Guide | Payroll & Employment Data Exposure, California Victim Rights, and How The Lyon Firm Can Help

Optima Tax Relief Data Breach

GlobalLogic Data Breach Investigation

Goglia Nutrition – FuturHealth Data Breach Investigation

Why Hire The Lyon Firm: Accomplished Data Breach Attorneys

CONTACT THE LYON FIRM TODAY

Data Breach Lawsuit FAQs

Our Recent Data Breach Settlements

Henderson v. Reventics, LLC

Navvis & CO, LLC Data Breach Litigation

Owens v. US Radiology Specialist, Inc.

Devine v. Health Aide of Ohio

Answer a few general questions.

A member of our legal team will review your case.

We will determine, together with you, what makes sense for the next step for you and your family to take.

Class Action Information Center