Yapstone Data Breach Class Action Settlement

Class Eligibility

the Settlement Class includes all persons and entities that Yapstone sent an Incident Notice to. You are eligible to receive benefits from the Settlement if you were sent an Incident Notice and your social security number, driver’s license number, and/or passport number was among the PII potentially exposed, and you did not sign up for the credit protection and fraud resolution offer from Yapstone in the Incident Notice. These Class Members are known as “Redemption Claimants.”

Estimated Amount

ProtectMyID® Identity Monitoring Services

Members of the class will receive twelve months of service at no cost

Proof of Purchase


Case Name

In re: Yapstone Data Breach, Case
No. 4:15-cv-04429
District Court for the Northern District of California

Case Summary

Yapstone discovered that certain personally identifiable information (“PII”) of its users may have been exposed through unsecured online unique resource locators (“URLs”), or web addresses, when users submitted applications to use its payment processing platform. PII including the name, address, date of birth, and bank account information—and in some cases, social security numbers, driver’s license numbers, and/or passport numbers, if provided by the applicant—may have been exposed between July 15, 2014 and August 5, 2015. In September 2015, Yapstone sent an Incident Notice to potentially affected users to notify them of the Incident and offered two years of complimentary credit protection and fraud resolution. Plaintiffs claim that Yapstone maintained inadequate data security practices, delayed in notifying users of the Incident, violated various state statutes, breached implied contracts, and unfairly profited from users. Yapstone denies all of the allegations made in the lawsuit and contends that there is no evidence of actual extractions or misuse of the data at issue.

Settlement Pool





In re: Yapstone Data Breach

Settlement Administrator

P.O. Box 43034

Providence, RI 02940-3034