University of Phoenix data breach class action lawsuit overview:
- Who: Tiaa Pointer filed a class action lawsuit against the University of Phoenix, its parent company Phoenix Education Partners and Oracle Corporation.
- Why: Pointer claims the defendants failed to properly safeguard the personally identifiable information of 3.5 million students during a data breach last year.
- Where: The class action lawsuit was filed in Texas federal court.
A new class action lawsuit alleges The University of Phoenix and Oracle Corporation failed to properly safeguard the personally identifiable information (PII) of 3.5 million students during an August 2025 data breach.
Plaintiff Tiaa Pointer claims the University of Phoenix and Oracle “failed to implement and maintain reasonable security measures” to protect students’ PII during the data breach.
Pointer argues an unauthorized third party exploited a vulnerability in Oracle’s E-Business Suite software in order to gain access to Oracle’s network systems and acquire files containing the PII of Oracle’s clients’ customers.
“Defendants owed a duty to Plaintiff and Class members to implement and maintain reasonable and adequate security measures to secure, protect, and safeguard their PII against unauthorized access and disclosure,” the University of Phoenix class action says.
Pointer wants to represent a nationwide class and Illinois subclass of individuals whose PII was accessed in the University of Phoenix data breach by unauthorized persons, including all who were sent a notice of the data breach.
University of Phoenix failed to notify students in timely manner, class action says
Pointer argues the University of Phoenix and Oracle failed to notify students that their PII had been accessed and acquired by unauthorized persons until one month after the data breach.
“Defendants’ failure to promptly notify Plaintiff and Class members that their PII was disclosed, accessed, and stolen virtually ensured that the unauthorized third parties who exploited those security lapses could monetize, misuse, or disseminate that PII before Plaintiff and Class members could take affirmative steps to protect their sensitive information,” the University of Phoenix class action says.
Pointer claims the University of Phoenix and Oracle are guilty of negligence, breach of implied contract and unjust enrichment, and of violating the Illinois Consumer Fraud and Deceptive Business Practices Act.
The plaintiff demands a jury trial and requests declaratory and injunctive relief and an award of actual, statutory and punitive damages for herself and all class members.
In other ongoing data breach lawsuits, a consumer has accused Under Armour failed to properly safeguard and secure sensitive customer data during a November 2025 data breach.
Were you affected by the University of Phoenix data breach? Let us know in the comments.
The plaintiff is represented by Bruce W. Steckler of Steckler Wayne & Love PLLC and Ben Barnow and Anthony L. Parkhill of Barnow and Associates, P.C.
The University of Phoenix data breach class action lawsuit is Pointer, et al. v. The University of Phoenix, Inc., et al., Case No. 1:26-cv-00009, in the U.S. District Court for the Western District of Texas.
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements:
Legal help for mental harm caused by social media addiction in young users
February 20, 2026 | social media
76 thoughts onUniversity of Phoenix class action claims data breach exposed 3.5M students’ PII
I attended UOP and received the letter recently. Please add me. Thanks
I also attended the university of Phoenix and received a letter also and I’m in the dark web multiple times
I got a letter about a month ago he’s still call me and asked me sign my transcript saying you and nothing with those guys until I find out what’s going on but I think they do deserve what they got because I’m having a lot of problems with people trying to buy cars in my name is social security I’ve had money they want you to fill out paperwork at the school and I’m not doing that so please don’t do that if they ask you to do that
Whatever you do do not sign any paperwork at University of Phoenix because you don’t know what’s going on and they’re trying to hide a bunch of BS not trying to hurt or scare anybody stop or anything but I don’t trust you guys
BOTH AN INSTRUCTOR AND A STUDENT RECEIVED A LETTER, FOR THIS TO HAPPEN TO EMPLOYMENT FILES CREDIT MONITORING IS NOT SUFFICIENT THEY NEED TO BE HELD ACCOUNTABLE AND SHOULD HAVE HAD THE HIGHEST STANDARDS
Man I’ve had so many issues with UOP. When I did the borrowers defense there were more loans than should have been when it came to funding my education. I only received the data breach paper just recently.
I too received the data security incident letter also my name is Matthew Archibald phone number 6628359582 email:[email protected]
I was an employee for almost 6 years, and I received a letter about the breach. They wanted to pay for my credit bureaus. I don’t think that’s enough. I think they should’ve been more transparent about what was going on. It wasn’t just a students.
I was a student at University of Phoenix i was never notified of this breacg
Me to
Me too…
I received a letter in the mail about this two weeks ago. I just recently graduated with my second degree through them.
I just received my letter in the mail. Not surprising yet still very frustrating considering this is the second or third time I’ve gotten notified of my PII being compromised in some sort of data breach going as far back as during the years while enrolled 2007-12, and even several years after graduating. The neverending spammy, scammy calls and texts and influx in scam emails in recent months have certainly been a joy to deal with.
Alison Wilkerson is my name I have been affected by this breach and posted a comment just before this one, but forgot to list my phone number…. 678-799-5850