Lucent Health Solutions Data Breach Class Action Settlement
Lucent Health Solutions has agreed to pay up to $1,950,000 to settle a class action over an October 2023 cyberattack affecting employer-sponsored health plan data. If you received a breach notice, you may claim an $80 cash payment with no proof, up to $5,500 for documented losses, plus three years of medical identity monitoring. The claim deadline is September 5, 2026.
Do I Qualify?
The Settlement Class includes every individual whose private information was implicated in the October 2023 data incident at Lucent Health Solutions — specifically, all individuals to whom Lucent Health sent an individual notification letter about the incident. If you received a notice from Lucent Health, or from your employer or health plan administrator on Lucent Health's behalf, advising you that your information may have been affected by the October 2023 cyberattack, you are almost certainly a class member. The settlement administrator used Lucent Health's records to identify affected individuals and sent settlement notices containing Claimant IDs to enable online filing.
Excluded from the Settlement Class are Lucent Health and its parents, subsidiaries, affiliates, officers, directors, legal representatives, and successors; any governmental entity; the presiding judge and the judge's immediate family and judicial staff; and any individual who timely and validly excludes themselves from the class. You do not need to be a current policyholder or have an active health plan through a Lucent Health client — anyone who received a notification letter qualifies, regardless of whether they still have coverage through the employer or plan that used Lucent Health's services. If you are unsure of your status or cannot locate your Claimant ID, contact the settlement administrator by phone at (833) 421-7240 or through the Contact page at LHDataBreachSettlement.com.
File your claim through the official settlement website before September 5, 2026.
File Your Claim →What Happened?
Lucent Health Solutions, LLC is a third-party health plan administrator based in Brentwood, Tennessee, that handles benefits and claims processing for employer-sponsored health plans across the United States. In October 2023, Lucent Health's computer systems were targeted in what the company later described as a targeted and isolated cyberattack. During the intrusion, unauthorized actors gained access to certain files on Lucent Health's network that contained members' personally identifiable and health-related information. Because Lucent Health provides back-office administration for employer groups rather than delivering care directly, many affected individuals may never have dealt with the company by name — their information was in Lucent Health's systems through their employer or group health, dental, or vision plan.
A class action lawsuit, Corralejo v. Lucent Health Solutions, LLC, Case No. 25C2679, was filed in the Circuit Court for Davidson County, Tennessee, alleging that Lucent Health failed to implement and maintain reasonable cybersecurity safeguards adequate to protect the sensitive personal and health information entrusted to it. Plaintiffs asserted claims including negligence, breach of implied contract, and violations of applicable data protection obligations. The exposed information may have included full names, dates of birth, and health, dental, and vision policy numbers, member ID numbers, and group and plan numbers. Lucent Health denies all allegations of wrongdoing and has not admitted liability; the company maintains that the incident was a targeted attack rather than the result of any systemic security failure on its part.
To resolve the litigation without the expense and delay of a trial, Lucent Health agreed to a settlement providing up to $1,950,000 in aggregate cash payments to eligible class members, plus three years of CyEx Medical Shield Complete identity monitoring for all who enroll. Lucent Health is paying the $650,000 in court-approved attorneys' fees and litigation costs separately, which means those amounts do not reduce the cash available to class members. The settlement administrator is Simpluris, reachable at (833) 421-7240 or through the settlement website. The Court has scheduled a Final Approval Hearing for September 9, 2026 at 9:30 a.m. Central Time at the Davidson County 6th Circuit Court in Nashville, Tennessee, and benefits will be distributed after final approval and any appeals are resolved.
How to File Your Claim
- Locate the Claimant ID from the settlement notice Lucent Health mailed or emailed to you about the October 2023 data incident. If you cannot find it, call the settlement administrator at (833) 421-7240 or use the Contact page at LHDataBreachSettlement.com.
- Visit the official settlement website at LHDataBreachSettlement.com and click "Submit a Claim."
- Log in with your Claimant ID, then complete the claim form. Select the benefits you want: the $80 alternative cash payment (no documentation), ordinary/extraordinary loss reimbursement (upload supporting receipts or statements), lost-time claim, and/or enrollment in CyEx Medical Shield Complete. You can combine the monitoring enrollment with any cash option.
- If you prefer a paper form, download it from the settlement website and mail it — with any required supporting documentation — to the settlement administrator. You may also call (833) 421-7240 to have a paper form mailed to you.
- Submit your claim online or postmark your mailed form by September 5, 2026.
How Much Will I Actually Get?
Every class member may enroll in three years of CyEx Medical Shield Complete at no cost, regardless of which cash option they select. CyEx Medical Shield Complete monitors for health insurance ID exposure, Medical Record Number (MRN) exposure, unauthorized Health Savings Account (HSA) spending, and dark-web activity. It also includes single-bureau credit monitoring and $1,000,000 of identity-theft insurance, along with access to a dedicated fraud resolution specialist if suspicious activity is found. This monitoring benefit is available to all class members simply by enrolling through the claim form.
In addition to the monitoring benefit, class members may claim one or more cash options from the aggregate cash pool, which is capped at $1,950,000 across all claimants. The simplest choice is the alternative cash payment of $80 — no documentation is required and no explanation of losses is needed. For those who incurred actual expenses, ordinary out-of-pocket losses — including costs for credit reports, credit monitoring or identity protection services, fees to freeze or unfreeze credit, replacement of government-issued IDs, postage, and similar out-of-pocket costs incurred between October 2, 2023 and September 5, 2026 — are reimbursable up to $550 with third-party supporting documentation such as receipts or bank statements. For more significant harm, extraordinary losses — meaning documented money lost to identity theft or fraud directly caused by the breach, not already covered as ordinary expenses and that you tried to prevent or recover — are reimbursable up to a combined cap of $5,500. Finally, class members may also claim up to $125 for lost time (five hours at $25 per hour) spent responding to the incident, such as changing passwords, monitoring accounts, or researching the breach. If total valid cash claims across all class members exceed $1,950,000, all payments are reduced proportionally.
Last reviewed: June 28, 2026 | Information verified from court records and official settlement documents.