DocketWise Class Action Lawsuit, 116,666 Immigration Clients’ Data Stolen Are You Affected?
Prepared by the AllAboutLawyer.com Editorial Team and reviewed for factual accuracy against the DocketWise breach notice filed with the Maine Attorney General and official state attorney general disclosures. Last Updated: May 6, 2026
DocketWise is facing a class action investigation filed after a data breach that occurred on or around September 1, 2025, exposed the personal records of 116,666 immigration clients across the United States. The breach targeted third-party repositories used by an immigration case management platform trusted by thousands of U.S. law firms. DocketWise began notifying affected individuals on April 3, 2026 — more than seven months after the breach first occurred.
DocketWise Data Breach — Quick Facts
| Field | Detail |
| Breach Occurred | On or around September 1, 2025 |
| Breach Discovered | October 2025 (credential compromise); February 19, 2026 (scope confirmed) |
| Defendant | DocketWise (owned by 8am, formerly AffiniPay, via MyCase) |
| Alleged Violation | Failure to protect personally identifiable information (PII); potential state breach notification law violations |
| Who Is Affected | 116,666 individuals — clients of immigration law firms that used DocketWise |
| Current Court Stage | Pre-litigation investigation; no lawsuit formally filed as of May 6, 2026 |
| Court & Jurisdiction | TBD — no complaint filed yet |
| Lead Law Firms Investigating | Shamis & Gentile P.A.; Cole & Van Note; Murphy Law Firm; Schubert Jonckheer & Kolbe; Bryson Harris Suciu & DeMay PLLC |
| Next Hearing Date | TBD — pending formal filing |
| Official Case Website | TBD — no administrator appointed yet |
| Last Updated | May 6, 2026 |
What the DocketWise Data Breach Exposed and Why It Matters to Immigration Clients
If you received a letter from DocketWise in April 2026, you are likely a client of an immigration law firm that used their software. DocketWise is a cloud-based immigration case management platform for law firms that discovered in October 2025 that unauthorized actors had accessed credentials for one of its third-party partner repositories.
The breach involved the cloning of repositories used in a data migration pipeline, exposing unstructured data belonging to DocketWise’s law firm clients and their customers. The compromised data included highly sensitive personally identifiable information (PII) such as names, Social Security numbers, dates of birth, driver’s license and passport numbers, financial account details, payment card information, medical records, and login credentials.
This is not an ordinary data breach. The people affected are immigration clients — asylum seekers, visa applicants, green card petitioners, and deportation defense clients. Their immigration case files, identity documents, and strategy information were all stored inside the DocketWise platform. At least some of the 116,666 people whose personal information was sitting in a cloned partner repository were actively appearing before immigration judges or asylum officers, with no idea that their case details were potentially in the hands of an unauthorized third party.
Related article: Rolling Stone Lifetime Subscription Settlement, How to Get Your Print Magazine Back
This is the kind of data breach compensation case that goes well beyond financial harm. Immigration data in the wrong hands carries consequences that extend to people’s legal status, safety, and futures.
For context on how similar third-party vendor breaches have played out in federal court, the Conduent data breach class action — where a business services vendor exposed over 25 million people’s records — shows how these cases escalate quickly once lawyers begin filing complaints.
Are You Part of the DocketWise Class Action Lawsuit?
Here is how to know if this case includes you. If you are asking “am I part of the DocketWise lawsuit” — check these points carefully.
You may be part of this class if:
- You received a written breach notification letter from DocketWise on or after April 3, 2026
- You were a client of any U.S. immigration law firm that used the DocketWise platform
- Your information was stored in DocketWise’s system as part of an immigration case — including visa applications, asylum petitions, green card filings, or deportation proceedings
- Your exposed data may include your Social Security number, passport number, driver’s license, financial account details, medical records, or government ID numbers
- You resided anywhere in the United States at the time of the breach
You are likely NOT included if:
- You never worked with an immigration attorney or law firm that used DocketWise’s software
- You did not receive a breach notification and have no reason to believe your immigration case records were stored on the DocketWise platform
- You are an attorney or law firm employee rather than a client whose personal data was stored in the system
If you are unsure, you can call the dedicated assistance line at 1-844-890-7449, Monday through Friday from 9 a.m. to 9 p.m. Eastern Time, to find out if your information was affected.
What Plaintiffs Are Seeking in This DocketWise Lawsuit
No formal complaint has been filed yet as of May 6, 2026. Multiple consumer rights lawyers are currently investigating the breach and building a case. Based on the legal theories under investigation, here is what affected individuals could seek:
Monetary damages for the loss of privacy, time spent dealing with the breach, and out-of-pocket costs like credit monitoring, identity restoration, and fraud remediation.
Statutory damages under state data breach notification laws. Although DocketWise discovered the breach in October 2025, it did not begin notifying impacted individuals until April 2026, which may have violated state and federal notification laws. That seven-month delay is a central focus of the investigation.
Injunctive relief — court orders requiring DocketWise to implement stronger security controls and vendor oversight to prevent future breaches.
This type of identity theft lawsuit often also seeks punitive damages when the delay in notifying victims is found to be unreasonable. A similar third-party vendor breach the Citizens Bank data breach class action — raised identical negligence and breach-of-contract claims over a vendor-side security failure.
No claim form exists yet. No payout amount has been confirmed. Any site telling you to file a claim form right now for a specific dollar amount is inaccurate.
What You Should Do Right Now If You Got a DocketWise Breach Letter
You do not need to file anything today to protect your place in a future class action. Most class members are automatically included once a complaint is filed. But there are things you should do immediately.
Step 1 — Enroll in the free credit monitoring. DocketWise is offering 24 months of complimentary credit monitoring and identity restoration services through IDX. The enrollment deadline is July 3, 2026. Use the enrollment code in your notification letter or call 1-844-890-7449.
Step 2 — Save everything. Keep your breach notification letter, any emails from DocketWise or your immigration attorney, and any records showing your relationship with the law firm that used DocketWise. These documents establish your connection to the breach and will matter if a class action is certified.
Step 3 — Monitor your accounts closely. Check your bank accounts, credit cards, and credit reports for unfamiliar activity. Given the sensitivity of immigration PII — including passport numbers and Social Security numbers — the personal data stolen settlement risks here are serious and long-term.
Step 4 — Consider a free legal consultation. If you believe you have suffered actual losses from this breach — fraudulent accounts, identity theft, or time and costs spent dealing with the incident — speaking with a data privacy attorney costs nothing upfront. Firms investigating this case operate on a contingency basis, meaning they only get paid if you do.
Step 5 — Monitor this case for updates. Follow the Maine Attorney General’s website and check back here. Once a formal complaint is filed, the case number and court will be published.
DocketWise Class Action Lawsuit Timeline
| Milestone | Date |
| Breach Occurred | On or around September 1, 2025 |
| DocketWise Detects Suspicious Access | October 2025 |
| Scope of Breach Confirmed | February 19, 2026 |
| Notifications Sent to Affected Individuals | April 3, 2026 |
| Disclosed to Attorneys General (CA, ME, MA, VT) | April 3, 2026 |
| Credit Monitoring Enrollment Deadline | July 3, 2026 |
| Formal Lawsuit Filing | TBD — investigation ongoing as of May 6, 2026 |
| Class Certification Motion | TBD — pending formal complaint |
| Expected Settlement Timeline | TBD — typically 18–36 months from filing |
Frequently Asked Questions
Is there a class action lawsuit against DocketWise right now?
No formal complaint has been filed yet as of May 6, 2026. Multiple law firms — including Shamis & Gentile P.A., Cole & Van Note, and Murphy Law Firm — are actively investigating the breach and looking for affected individuals. A lawsuit is likely, but no court case number exists yet.
Do I need to do anything right now to be included in the DocketWise class action?
Not to preserve your class membership. Once a complaint is filed and a class is certified, affected individuals are typically included automatically. What you should do now is enroll in the free IDX credit monitoring before the July 3, 2026 deadline and save all documents related to your breach notification.
How to join the DocketWise class action — what are my options?
Right now, you can register your information with one of the investigating law firms. This costs nothing and puts you in contact with attorneys building the case. You are not required to hire a lawyer to be part of a class action — but registering your interest now can help attorneys understand the scope of harm.
When will a settlement be reached in the DocketWise case?
TBD — no complaint has been filed yet. Data breach class actions of this type typically take 18 to 36 months from the filing of a complaint to a negotiated settlement. Given that investigations began in April 2026, a settlement, if reached, would likely not arrive before late 2027 at the earliest.
Can I file my own individual lawsuit against DocketWise instead?
Yes. You have the right to opt out of any class action and pursue an individual claim. However, individual litigation is costly and complex. If you suffered specific, documented losses from this breach — such as identity theft or fraud — consult a consumer rights lawyer to understand whether an individual claim makes sense for your situation.
How will I know if the DocketWise case settles?
If you enrolled in the credit monitoring or registered with a law firm investigating the case, you will receive direct notice. You can also monitor the Maine Attorney General’s breach notification portal and check updates here at AllAboutLawyer.com.
Why is this breach especially serious for immigration clients?
The exposed data includes passport numbers, Social Security numbers, government ID numbers, and information tied to active immigration cases. The breach sat at a rare and uncomfortable intersection of vendor security failure, attorney-client privilege exposure, and the heightened sensitivity of immigration data in a period of intensified federal enforcement. The risk for affected individuals goes beyond financial fraud.
Am I part of the DocketWise lawsuit if I never directly used DocketWise?
Possibly. DocketWise stored data on behalf of immigration law firms — their clients never interacted with DocketWise directly. If your immigration attorney used DocketWise to manage your case, your records were on their platform. The breach notification letter you received confirms your data was there.
Sources & References
- DocketWise Data Breach Notice — Maine Attorney General Filing (April 3, 2026): maine.gov Attorney General Portal
- ComplexDiscovery.com — When Your Legal Tech Vendor Gets Breached: DocketWise Incident Exposes 116,666 Immigration Records (April 2026): complexdiscovery.com
Disclaimer: This article is for informational purposes only and does not constitute legal advice. Legal claims and outcomes depend on specific facts and applicable law. For advice regarding a particular situation, consult a qualified attorney.
About the Author
Sarah Klein, JD, is a licensed attorney and legal content strategist with over 12 years of experience across civil, criminal, family, and regulatory law. At All About Lawyer, she covers a wide range of legal topics — from high-profile lawsuits and courtroom stories to state traffic laws and everyday legal questions — all with a focus on accuracy, clarity, and public understanding.
Her writing blends real legal insight with plain-English explanations, helping readers stay informed and legally aware.
Read more about Sarah