AutoZone class action alleges company responsible for data breach

AutoZone data breach class action overview: 

• Who: AutoZone is facing a class action lawsuit regarding a data breach of the personal information of Plaintiff Salvador Aceves, Jr., and others. 
• Why: AutoZone is accused of not properly protecting the personal information of customers and thus putting them at risk for identity theft.
• Where: The AutoZone class action was filed in federal court in California.

AutoZone is facing a class action lawsuit stating that it did not properly protect the personal information of customers when it suffered a data breach this fall.

The AutoZone data breach occurred as early as Aug. 15 but the company did not inform the victims about the breach until Nov. 21, the AutoZone class action says.

“Representative Plaintiff suffered imminent and impending injury arising from the substantially increased risk of fraud, identity theft, and misuse resulting from his PII, in combination with his name, being placed in the hands of unauthorized third parties/criminals,” the AutoZone class action says.

Plaintiff Salvador Aceves and the class are asking for an injunction to cause AutoZone to implement security measures that match the industry standard so that customers do not incur irreparable harm where there would not be an adequate legal remedy.

It would not cost AutoZone a large amount of money to have reasonable data security measures and the company has a “pre-existing legal obligation” to already have those measures in place.

Lawsuit asks AutoZone to create comprehensive data security measures, employee training program

AutoZone is being asked to cease and desist its actions that led to the data breach along with paying actual, nominal, and consequential damages. The AutoZone class action also asks the court to require the company to fully encrypt personal data from customers.

AutoZone is also being asked in the lawsuit to create data firewalls, establish a data security protocol and training for employees, test employees knowledge and the strength of security measures and create a threat management program.

Toyota Financial Services confirmed it recently discovered unauthorized activity on some of its systems in Europe and Africa after the Medusa ransomware group claimed to have stolen data. 

Was your personal information compromised in the AutoZone data breach? Let us know in the comments.

The plaintiff is represented by Daniel Srourian of Srourian Law Firm P.C.

The AutoZone data breach class action lawsuit is Aceves Jr. v. AutoZone Inc., Case No. 2:23-cv-09960, in the U.S. District Court for the Central District of California.

Read About More Class Action Lawsuits & Class Action Settlements:

• Pathward class action claims company failed to safeguard personal info prior to data breach
• Stanley Steemer class action alleges data breach affects current, former customers
• Northwell Health class action alleges data breach affected almost 4M individuals
• Morgan Stanley to pay $6.5M to resolve data breach investigations with 6 states