Garden of Life class actions allege data breach exposed payment card info

Garden of Life data breach overview:

• Who: Consumers have filed three new class action lawsuits against Garden of Life LLC.
• Why: The plaintiffs claim Garden of Life failed to protect consumers’ personal information during a data breach that exposed payment card information.
• Where: The Garden of Life data breach class action lawsuits were filed in Florida federal court.

Garden of Life LLC faces three new class action lawsuits alleging that a data breach at the vitamins and supplements company exposed customers’ payment card information.

Plaintiffs from Florida, North Carolina and California have each filed class action lawsuits against Garden of Life following its Jan. 17 announcement of a data breach. 

The lawsuits allege that Garden of Life failed to properly secure and safeguard the personally identifiable information of its customers, leading to a data breach that exposed sensitive payment card information.

Data breach exposed names, addresses, payment card info, lawsuits claim

According to the lawsuits, Garden of Life became aware of a security incident on its network on Dec. 18, 2024, and launched an investigation with the help of third-party cybersecurity experts.

The investigation revealed an unauthorized third party gained access to the software used by Garden of Life’s website to collect payment card information for online purchases in July 2024. 

The compromised data includes names, addresses, email addresses, credit or debit card numbers, expiration dates and card value verification numbers, the lawsuits claim.

While all three lawsuits focus on Garden of Life’s data breach, they differ in their focus areas and the groups they seek to represent. 

One of the lawsuits accuses Garden of Life of alleged data security failures and privacy violations, while another claims the company delayed notifying customers of the breach by six months, further exposing them to the risk of identity theft.

As a result of the data breach, the plaintiffs allege they and other affected individuals have lost the ability to control their private information and will be exposed to financial harm in the future.

The plaintiffs are suing for negligence, negligence per se, unjust enrichment, breach of implied contract and breach of confidence. They seek class certification, damages, fees, costs and a jury trial.

In other data breach news, Grubhub revealed in February that a recent data breach exposed the contact information and partial payment card numbers of some users. The company said the exposed data varied by individual but included names, email addresses and phone numbers.

What do you think of the allegations in these Garden of Life data breach class actions? Let us know in the comments.

The plaintiffs are represented by Jonathan M. Stein of SteinLaw Florida PLLC, Eduard Korsinsky and Mark Svensson of Levi & Korsinsky LLP and Jessica Wallace and Tyler J. Bean of Siri & Glimstad LLP.

The Garden of Life data breach class action lawsuits are Flick v. Garden of Life LLC, Case No. 9:25-cv-80090, in the U.S. District Court for the Southern District of Florida; Grove v. Garden of Life LLC, Case No. 9:25-cv-80113, in the U.S. District Court for the Southern District of Florida; and Williams, et al. v. Garden of Life LLC, Case No. 9:25-cv-80216, in the U.S. District Court for the Southern District of Florida.

Read About More Class Action Lawsuits & Class Action Settlements:

• Underdog Fantasy class action alleges company operates illegal sports betting
• Sleep Number class action alleges deceptive sales pricing
• Klover class action alleges company charged borrowers 1,000% interest
• Ryobi class action claims mowers can catch fire