A Honeywell settlement resolves claims that the company failed to implement cybersecurity measures which could have prevented a 2023 data breach.
The settlement benefits individuals who received a data breach notification between June 2023 and September 2023 informing them their information may have been compromised in a cybersecurity incident discovered in June 2023.
According to the data breach class action lawsuit, Honeywell failed to protect consumers from a June 2023 cyberattack that compromised consumer data. Hackers were allegedly able to steal consumer information through a vulnerability in a third-party file sharing tool.
Honeywell designs and manufactures home products such as thermostats, air purifiers, security products and smart home solutions.
Honeywell hasn’t admitted any wrongdoing but agreed to pay an undisclosed sum to resolve the data breach class action lawsuit.
Under the terms of the settlement, class members can receive up to $425 in reimbursement for ordinary data breach losses, such as bank fees, communication charges, credit expenses and more. The settlement also provides compensation for up to three hours of lost time paid at a rate of $27.50 per hour for a maximum lost time payment of $82.50. Class members who experienced extraordinary data breach losses linked to fraud or identity theft can receive additional reimbursement of up to $2,750 for these damages.
Class members who did not previously enroll for credit monitoring services offered by Honeywell are able to do so now under the settlement. Honeywell offered affected consumers two years of Experian IdentityWorks services at no cost.
The deadline for exclusion and objection was Sept. 24, 2024.
The final approval hearing for the settlement is scheduled for Nov. 1, 2024.
To receive Honeywell settlement benefits, class members must submit a valid claim form by Oct. 24, 2024.