Fidelity Investments Data Breach Settlement, Were Your Bank Account Numbers Exposed? Claim Up to $5,000 Before July 27
The Fidelity Investments data breach settlement is a data privacy class action where current and former Fidelity customers whose personal and financial information was stolen in August 2024 can receive an estimated $100 flat cash payment or up to $5,000 for documented losses — plus two years of free identity monitoring — by filing a claim at FidelityDataSettlement.com before July 27, 2026. Fidelity denies that it did anything wrong, and the Court has not decided who is right.
Quick Facts: In re Fidelity Investments Data Breach Litigation, No. 1:24-CV-12601-LTS
| Field | Detail |
| Settlement Amount | $2,500,000 |
| Claim Deadline | July 27, 2026 |
| Opt-Out / Objection Deadline | June 26, 2026 |
| Who Qualifies | U.S. residents who received a Fidelity breach notice OR whose account/routing number was exposed |
| Flat Cash Payment | ~$100 (no documentation needed) |
| California Bonus Payment | +$50 (CCPA — California residents only) |
| Documented Loss Payment | Up to $5,000 |
| Free Identity Monitoring | 2 years — CyEx Financial Shield, $1M fraud insurance |
| Proof Required | No for flat $100; yes for documented losses |
| Settlement Status | Preliminarily approved March 11, 2026 |
| Court | U.S. District Court, District of Massachusetts |
| Judge | U.S. District Judge Leo T. Sorokin |
| Settlement Administrator | Fidelity Data Security Incident Settlement c/o Settlement Administrator |
| Official Website | FidelityDataSettlement.com |
| Final Approval Hearing | July 9, 2026 — Boston, MA |
| Last Updated | May 16, 2026 |
Current Status of the Fidelity Settlement
- Preliminary approval granted March 11, 2026 — the official claim portal is now live at FidelityDataSettlement.com
- In April 2026, Massachusetts Secretary of the Commonwealth William Galvin issued a separate $1.25 million regulatory fine against Fidelity Brokerage Services for the same breach — adding official government confirmation that Fidelity’s cybersecurity controls were inadequate
- The opt-out and objection deadline is June 26, 2026
- Final Approval Hearing is scheduled for July 9, 2026 in Boston — the judge will decide whether to make the settlement permanent
- Claim forms must be submitted online or postmarked by July 27, 2026
What Is the Fidelity Data Breach Lawsuit About? In re Fidelity Investments Data Breach Litigation, No. 1:24-CV-12601-LTS
In August 2024, someone figured out that Fidelity’s internal document system had a serious flaw. Between August 17 and August 19, 2024, unauthorized third-party actors exploited two newly created customer accounts to access personal information, including Social Security numbers and driver’s licenses. By setting up fresh brokerage accounts, the attackers were able to send fraudulent requests to an internal database containing document images tied to existing Fidelity customers.
During that window, the hackers made approximately 23.7 million calls for images, likely using an automated script. While most attempts failed, they successfully accessed about 373,000 unique document images associated with Fidelity clients’ accounts. Those documents held some of the most sensitive financial data a person can have: Social Security, passport and driver’s license numbers, as well as financial account information, insurance and medical information, and scanned images of active credit cards.
The complaint further alleges Fidelity detected suspicious activity between August 17 and August 19, 2024, but did not notify affected customers until October 10, 2024 — nearly two months later. Plaintiffs argue the delay left customers vulnerable to identity theft and fraud. The lawsuit cites violations of the California Consumer Privacy Act, the Massachusetts Consumer Protection Law, and multiple other state privacy statutes. This is exactly the kind of personal data stolen settlement case where the harm isn’t just theoretical — bank account numbers and routing numbers in the wrong hands can drain accounts, enable wire fraud, and fund phishing attacks targeting the same victims.
Related article: Boka Toothpaste Class Action Investigation, Regulators Ordered Essor to Drop Key Claims Are You Owed Compensation?
The consent order from Massachusetts regulators confirmed that the breach also exposed data on beneficiaries and relatives of Fidelity customers — including some who were minors — not just account holders themselves. For background on how data breach compensation claims work across other major cases, see AllAboutLawyer.com’s Comcast Xfinity $117.5M data breach settlement guide.
Who Qualifies for the Fidelity Investments Settlement?
The settlement covers two groups of people. The first includes anyone in the United States who received a formal data breach notification from Fidelity. The second includes customers whose account numbers and routing numbers were exposed during the incident, even if they did not receive direct notification.
That second group matters. An additional 86,000 customers whose financial account numbers and routing numbers were compromised may also be eligible for relief, even if they did not receive a direct notice from Fidelity. If you have or had a Fidelity account and weren’t notified — you may still qualify. Check your eligibility directly at FidelityDataSettlement.com or contact the administrator at [email protected].
You may qualify if:
- You received a written data breach notice from Fidelity about the August 2024 security incident
- Your financial account number and/or routing number was exposed between August 17–19, 2024 — even without a direct notice
- You are a U.S. resident whose personal information was in Fidelity’s systems during the breach period
- You are a beneficiary or relative listed in Fidelity customer records whose documents were accessed
You do NOT qualify if:
- You are an officer, director, or employee of FMR LLC or Fidelity Brokerage Services LLC
- You submitted a timely exclusion request before June 26, 2026
- You are the presiding judge or judicial staff on this case
If you want to pursue an individual identity theft lawsuit against Fidelity for losses significantly exceeding $5,000, consult a data privacy attorney before the opt-out deadline of June 26, 2026.
How Much Can You Get from the Fidelity Settlement?
You may be eligible for approximately $100 cash with no proof required, plus an additional $50 if you live in California, up to $5,000 reimbursement for documented identity theft losses, and two years of free credit monitoring with $1 million in fraud insurance.
Here’s how each tier works:
Flat Cash Payment (~$100) — No documentation needed Every class member can claim this. You do not need to prove any actual loss. The $100 is a pro rata estimate — the final amount adjusts based on how many valid claims are filed. File early.
California CCPA Bonus (+$50) — California residents only California residents should indicate California residency at the time of the data breach on the claim form. The CCPA payment requires no documentation beyond that, and the settlement administrator verifies against Fidelity’s records. California residents with no documented losses can receive approximately $150 total.
Documented Out-of-Pocket Losses (up to $5,000) Eligible expenses include unreimbursed fraud or identity theft losses, professional fees, and credit-related costs incurred between August 17, 2024 and July 27, 2026. Class members claiming documented losses must provide receipts, bills, or other documentation that is not self-prepared. Bank statements, credit card statements, police reports, and professional invoices all qualify.
Free Identity Monitoring — 2 Years (automatic) All class members are eligible for two years of CyEx Financial Shield Complete, which includes $1 million in financial fraud insurance and monitoring for identity theft, dark web postings, and unauthorized transactions.
How to File Your Fidelity Settlement Claim — Step by Step
Step 1 — Go to FidelityDataSettlement.com — the only court-authorized site
Step 2 — Log in using the unique Login ID and PIN from the settlement notice Fidelity sent you. If you can’t find it, email [email protected] with your full name and mailing address to retrieve your credentials
Step 3 — Choose your claim type: flat cash payment, documented losses, or both
Step 4 — If claiming documented losses, upload your supporting documents — bank statements, receipts, invoices, or other non-self-prepared proof showing expenses tied to the breach
Step 5 — California residents: indicate your California residency to automatically trigger the additional $50 CCPA payment
Step 6 — Submit online by July 27, 2026 at 11:59 p.m. Or mail your completed paper claim form, postmarked by July 27, 2026, to: Fidelity Data Security Incident Settlement, c/o Settlement Administrator, P.O. Box 25226, Santa Ana, CA 92799-9958
Questions? Call (833) 386-6470 or email [email protected].
Estimated time to complete: 5–10 minutes.
Fidelity Data Breach Settlement — Key Dates
| Milestone | Date |
| Breach Occurred | August 17–19, 2024 |
| Fidelity Detects Intrusion | August 19, 2024 |
| Fidelity Notifies Customers | October 10, 2024 |
| Class Action Filed | December 2024 |
| Preliminary Approval Granted | March 11, 2026 |
| Massachusetts $1.25M Regulatory Fine | April 27, 2026 |
| Opt-Out / Objection Deadline | June 26, 2026 |
| Final Approval Hearing | July 9, 2026 — Boston, MA |
| Claim Filing Deadline | July 27, 2026 |
| Expected Payment Date | TBD — after final approval and any appeals resolved |
Frequently Asked Questions
Is there a class action lawsuit against Fidelity Investments for the 2024 data breach?
Yes. The lawsuit is called In re: Fidelity Investments Data Breach Litigation, Case No. 1:24-CV-12601-LTS, pending in the U.S. District Court for the District of Massachusetts. A $2.5 million settlement has received preliminary court approval and the claim portal is now open.
Do I qualify if I never received a breach notice from Fidelity?
You may still qualify. The second group covered by the settlement includes customers whose account numbers and routing numbers were exposed, even if they did not receive direct notification. Check your eligibility using the ID Look Up tool at FidelityDataSettlement.com or email the administrator with your name and address.
Do I need a lawyer to file a Fidelity breach claim?
No. The claim form at FidelityDataSettlement.com is straightforward and takes about five to ten minutes. You only need a consumer rights lawyer if your documented losses significantly exceed $5,000 and you want to opt out and pursue an individual case — but act before June 26, 2026 if so.
How much will I actually get from the Fidelity settlement?
All class members can receive a pro rata cash payment estimated at $100 — the actual amount may be higher or lower depending on the number of valid claims. California residents add $50 on top. Those with receipts and documentation of real financial harm can claim up to $5,000.
Is this settlement legitimate?
Yes. U.S. District Judge Leo T. Sorokin granted preliminary approval, finding that the proposed nationwide class presents common legal and factual questions and represents a fair and efficient way to resolve the dispute. The only official claim site is FidelityDataSettlement.com. The administrator’s contact number is (833) 386-6470.
When will I get my payment?
Payments go out after the July 9, 2026 final approval hearing and after any appeals are resolved. There is no fixed payment date yet — check FidelityDataSettlement.com for updates after the hearing.
What happened to Massachusetts’ separate $1.25 million fine against Fidelity?
Massachusetts Secretary of the Commonwealth William Galvin issued a $1.25 million fine against Fidelity Brokerage Services, after finding that the company’s insufficient enforcement of its own cybersecurity protocols allowed the breach to occur over a three-day period. That regulatory penalty is separate from this class action settlement — it goes to the state, not to consumers. Your class action claim is the mechanism to get your own compensation.
Will this payment affect my taxes?
Settlement payments for reimbursement of out-of-pocket losses are generally not taxable. The flat cash payment may be treated as ordinary income depending on your circumstances. Consult a tax professional if your payout is significant.
Sources & References
- Official Settlement Website (court-authorized): FidelityDataSettlement.com
- Court Docket: In re: Fidelity Investments Data Breach Litigation, Case No. 1:24-CV-12601-LTS, U.S. District Court, District of Massachusetts
- Massachusetts Secretary of the Commonwealth — Consent Order, Fidelity Brokerage Services, April 27, 2026
Prepared by the AllAboutLawyer.com Editorial Team and reviewed for factual accuracy against the official settlement website FidelityDataSettlement.com, the court docket No. 1:24-CV-12601-LTS, and the Massachusetts consent order dated April 27, 2026. Last Updated: May 16, 2026
Disclaimer: This article is for informational purposes only and does not constitute legal advice. Legal claims and outcomes depend on specific facts and applicable law. For advice regarding a particular situation, consult a qualified attorney.
About the Author
Sarah Klein, JD, is a licensed attorney and legal content strategist with over 12 years of experience across civil, criminal, family, and regulatory law. At All About Lawyer, she covers a wide range of legal topics — from high-profile lawsuits and courtroom stories to state traffic laws and everyday legal questions — all with a focus on accuracy, clarity, and public understanding.
Her writing blends real legal insight with plain-English explanations, helping readers stay informed and legally aware.
Read more about Sarah