Published
June 30, 2026
If you got a notice that your information was exposed in the October 2024 STIIIZY data breach, you can claim up to $7,500 or pro rata cash plus two years of free credit monitoring.
What Is This Settlement About?
STIIIZY, Inc. — the California-based cannabis vape and retail brand — has agreed to a $2,950,000 class action settlement to resolve claims arising from a data security incident that the company says occurred in October 2024 and disclosed to customers in January 2025. According to the complaint, an unauthorized third party accessed personal information held on STIIIZY's systems, allegedly through a vendor used for point-of-sale processing. The information involved may have included names, addresses, dates of birth, driver's license numbers, photos, signatures, and transaction histories.The lawsuit, consolidated as In Re: STIIIZY Inc. Data Breach Security Litigation in the U.S. District Court for the Central District of California, alleges STIIIZY failed to adequately protect customer data. STIIIZY denies the allegations and any wrongdoing; the settlement resolves the claims without any admission of liability. The court granted preliminary approval, and notice is now reaching class members.
Status
Claims Open
Claim Deadline
September 10, 2026
Estimated Payout
Up to $7,500
Documented losses up to $7,500, or pro rata cash · plus 2 yrs credit monitoring
Proof Required
Yes
Class Member ID from your notice; receipts/records for documented losses
Who Qualifies?
The settlement class is made up of individuals who were sent notice that their personal information may have been compromised in the October 2024 STIIIZY data security incident. STIIIZY's investigation indicated the incident affected roughly 380,000 customers. If you received an email notice or a mailed notice about the breach, you are almost certainly a class member.People who did not receive a notice but have a reasonable basis to believe their information was affected may still submit a claim, subject to the claims administrator's verification. This is a settlement of a privacy and data-security investigation that began as an earlier-stage matter — you can read our original STIIIZY data breach investigation for background on how the incident first came to light.
How Much Can You Get?
Class members can choose between two cash options, and may also add credit monitoring:- Documented losses: reimbursement of up to $7,500 per person for out-of-pocket expenses and losses fairly traceable to the breach — for example unreimbursed fraud charges, bank fees, credit-monitoring costs you already paid, and similar documented expenses. This option requires supporting documentation.
- Pro rata cash payment: a flat cash payment that requires no out-of-pocket documentation. The exact amount depends on how many valid claims are filed against the $2.95 million fund after fees, costs, and any service awards, so it cannot be stated in advance.
- Credit monitoring: all class members may also elect two years of credit monitoring, fraud consultation, and identity theft restoration services, including three-bureau credit monitoring and up to $1 million in identity theft insurance.
You generally must choose between the documented-loss option and the pro rata cash option; you cannot collect both cash benefits. The settlement website explains exactly what each option covers.
How to File a Claim
You can submit a claim online or by mailing a paper claim form to the claims administrator. To file online, you will generally need the Class Member ID printed on the email or mailed notice you received. If you are claiming documented losses, you will also need to upload supporting records such as receipts, statements, or invoices.If you cannot find your Class Member ID, you can request help through the official settlement website's contact page rather than searching for the code yourself. File your claim at StiiizyDataBreachSettlement.com.
Important Deadlines
- Claim deadline: September 10, 2026 (submitted online or postmarked).
- Exclusion / objection deadline: August 26, 2026. If you want to keep your right to sue STIIIZY separately, you must exclude yourself by this date; objections are also due then.
- Final approval hearing: October 19, 2026. The court will decide whether to approve the settlement and the requested fees and awards. Payments are issued only after the settlement becomes final.
Watch Out for Scams
The only place to file is the official settlement website. The administrator will not ask you to pay a fee to receive a settlement payment, and a legitimate notice will not demand your full Social Security number or bank password by phone or text. If you are unsure whether a message is genuine, go directly to the official settlement website instead of clicking a link in an unsolicited message.
For more class actions keep scrolling below.
Settlement Amount
$2,950,000
Case Title
In Re: STIIIZY Inc. Data Breach Security Litigation
Case Number
2:25-cv-00490
Court
U.S. District Court, Central District of California
Final Approval Hearing
October 19, 2026 at 8:30 AM PT
Administrator
P&N (court-appointed claims administrator)
Official Website
Stiiizy Data Breach Settlement.com
