ASM Global Parent 1.4M Settlement Over 2023 Data Breach Exposing Personal Data
Deadline
Deadline: January 2, 2026
Total Settlement Amount
Total amount allocated for all claims
Individual Payout Range
Estimated amount per eligible claim
Proof of Purchase
Claimants must provide the Notice ID from the mailed/email settlement notice (and a PIN for online filing). If the notice was lost, they must contact the settlement administrator and provide their name and mailing address to retrieve details. For out-of-pocket reimbursement (up to $10,000), claimants must submit supporting documents (e.g., receipts, bank/credit records, invoices) showing the amount of the loss, why it is likely related to the breach, and evidence they tried to avoid or recover the loss (such as using available credit monitoring or identity theft insurance). Self-created notes alone are not acceptable, though they may be used to explain other documentation. For the pro rata payment, claimants must certify eligibility, and California residents seeking two shares must provide a sworn attestation of California residency as of Oct. 12, 2023.
Settlement Summary
ASM Global Parent Inc. agreed to a $1.4 million class action settlement tied to a cyberattack discovered on Oct. 12, 2023, after affected consumers were told their personal data may have been accessed. The information at issue goes beyond basic contact details and can include high-risk identifiers such as Social Security numbers, driver’s license or passport numbers, payment card data, and—in some cases—medical diagnosis or treatment information, all of which can fuel identity theft, fraudulent account openings, or medical identity fraud. Under the proposed settlement, eligible U.S. residents can seek reimbursement for documented, unreimbursed losses up to $10,000 (for losses occurring between Oct. 10, 2023 and Jan. 2, 2026) and may also request a pro rata cash payment from what remains after fees and administration costs, with California residents receiving two shares. The lawsuit was filed because plaintiffs allege ASM Global Parent failed to use reasonable safeguards to protect sensitive personal and health information, allowing threat actors to access it—claims common in data-breach litigation where the central question is whether the company’s security practices were adequate for the sensitivity of the data it held. Its significance is less about any admission of fault (ASM denies wrongdoing) and more about accountability and consumer recourse: class actions can create a standardized process to compensate many people for a single incident, require documentation and mitigation efforts (like using credit monitoring or identity-theft insurance), and push organizations to treat cybersecurity as a core operational obligation rather than an IT afterthought. More broadly, this settlement fits a well-established pattern in breach cases across retail, healthcare-adjacent services, and large venue/entertainment operators: plaintiffs typically allege negligence and inadequate security controls, while companies often settle to avoid prolonged litigation risk and cost even when disputing liability. Industry expectations are shaped by a patchwork of state privacy and breach-notification laws and, where health information is involved, heightened scrutiny around safeguarding sensitive medical data; California’s stronger consumer-privacy framework also helps explain why California residents are allocated two shares in the pro rata distribution. The case underscores how holding “all-in-one” identity datasets—government IDs plus financial and potentially health information—raises both regulatory exposure and practical harm risk, increasing pressure on companies to adopt stronger security governance, vendor oversight, and incident-response readiness to reduce the likelihood and impact of future breaches.
Entities Involved
Eligibility Requirements
- Be a resident of the United States
- Have received a settlement notice (or be identified as a class member) stating your information was impacted by the ASM Global Parent Inc. data security incident detected on Oct. 12, 2023
- Submit a claim by Jan. 2, 2026 (or opt out by Dec. 2, 2025 if you do not want to participate)
- For up to $10,000 reimbursement: have documented, unreimbursed out-of-pocket losses reasonably traceable to the incident that occurred between Oct. 10, 2023, and Jan. 2, 2026, and show reasonable efforts to prevent or recover those losses
- For a pro rata cash payment: attest/certify you are an eligible class member
- To receive two pro rata shares: be a California resident as of Oct. 12, 2023 and provide a sworn statement of California residency
Featured Investigations
Stay Updated
Subscribe to our newsletter for the latest settlement updates and news.
Important Notice About Filing Claims
Submitting false information in a settlement claim is considered perjury and will result in your claim being rejected. Fraudulent claims harm legitimate class members and may result in legal consequences.
If you are unsure about your eligibility for this settlement, please visit the official settlement administrator’s website using the link provided above. Review the eligibility criteria carefully before submitting a claim.
Class Action Champion is an independent information resource and is not affiliated with any settlement administrator, law firm, or court. We provide settlement information as a service to help connect eligible class members with legitimate settlements.