Minnesota Orthodontics and Dentofacial Orthopedics: Minnesota Orthodontics Data Breach Class Action Settlement

Minnesota Orthodontics and Dentofacial Orthopedics: Minnesota Orthodontics Data Breach Class Action Settlement

Minnesota Orthodontics Data Breach Settlement Approved for Nearly 50,000 Affected Individuals

A class action settlement has been finalized for individuals impacted by a February 2025 data breach at Minnesota Orthodontics and Dentofacial Orthopedics, which may have exposed the personal information of nearly 50,000 current and former patients and employees. The breach, allegedly resulting from inadequate cybersecurity protections, led to unauthorized access to sensitive data by a third party.

Eligible class members U.S. residents who received a breach notification were given the option to claim two years of free credit monitoring through IDX or a $25 cash payment as compensation. No additional documentation was required for claims, as the settlement administrator identified affected individuals. Payments and credit monitoring activation codes will be distributed after the June 5, 2026, final approval, pending any appeals.

The settlement fund allocates up to $135,000 for attorneys’ fees, $2,000 for the class representative, and up to $50,000 for cash claims, with unlimited coverage for credit monitoring costs. While the company denied wrongdoing, the settlement was reached to avoid prolonged litigation. The court has not determined liability.

Source: https://www.claimdepot.com/settlements/mn-ortho-data-settlement

Minnesota Orthodontics and Dentofacial Orthopedics TPRM report: https://www.rankiteo.com/company/university-of-minnesota-school-of-dentistry

"id": "uni1783988976",
"linkid": "university-of-minnesota-school-of-dentistry",
"type": "Breach",
"date": "7/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': '50,000',
                        'industry': 'Healthcare',
                        'location': 'Minnesota, USA',
                        'name': 'Minnesota Orthodontics and Dentofacial '
                                'Orthopedics',
                        'type': 'Healthcare Provider'}],
 'attack_vector': 'Unauthorized Access',
 'customer_advisories': 'Breach notification sent to affected individuals with '
                        'options for credit monitoring or cash payment.',
 'data_breach': {'number_of_records_exposed': '50,000',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High (personally identifiable '
                                        'information)',
                 'type_of_data_compromised': 'Personal information'},
 'date_detected': '2025-02',
 'description': 'A class action settlement has been finalized for individuals '
                'impacted by a February 2025 data breach at Minnesota '
                'Orthodontics and Dentofacial Orthopedics, which may have '
                'exposed the personal information of nearly 50,000 current and '
                'former patients and employees. The breach allegedly resulted '
                'from inadequate cybersecurity protections, leading to '
                'unauthorized access to sensitive data by a third party.',
 'impact': {'data_compromised': 'Personal information',
            'financial_loss': '$135,000 (attorneys’ fees) + $2,000 (class '
                              'representative) + up to $50,000 (cash claims)',
            'identity_theft_risk': 'High (credit monitoring offered)',
            'legal_liabilities': 'Class action settlement'},
 'investigation_status': 'Settled (pending final approval)',
 'lessons_learned': 'Inadequate cybersecurity protections can lead to '
                    'significant legal and financial consequences, including '
                    'class action settlements and credit monitoring costs.',
 'post_incident_analysis': {'corrective_actions': 'Settlement includes credit '
                                                  'monitoring and cash '
                                                  'compensation for affected '
                                                  'individuals.',
                            'root_causes': 'Inadequate cybersecurity '
                                           'protections'},
 'recommendations': 'Implement stronger cybersecurity measures, conduct '
                    'regular security audits, and ensure compliance with data '
                    'protection regulations to prevent unauthorized access to '
                    'sensitive data.',
 'references': [{'source': 'Class action settlement announcement'}],
 'regulatory_compliance': {'legal_actions': 'Class action lawsuit'},
 'response': {'communication_strategy': 'Breach notification to affected '
                                        'individuals',
              'third_party_assistance': 'IDX (credit monitoring provider)'},
 'threat_actor': 'Third party',
 'title': 'Minnesota Orthodontics Data Breach Settlement',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Inadequate cybersecurity protections'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.