Doughnut addicts stand to come into some serious dough.
Krispy Kreme Doughnuts has agreed to a $1.6 million settlement to resolve a class-action lawsuit over a November 2024 data breach, which allegedly exposed private consumer information.
The info included combinations of names, dates of birth, Social Security numbers and financial account access details, per the settlement report.
Pastry lovers affected by the breach could be eligible to receive a payment exceeding $3,000 as part of the deal. But the time to file a claim is running out and eligibility limitations are strict.
“You are included in the Settlement Class if you are a living individual residing in the United States and were sent a Notice of the Data Incident indicating that your Private Information may have been impacted in the Data Incident,” the North Carolina-based company noted in its terms.
Foodies seeking sweet settlement funds must also submit documentation showing losses related to fraud or identify theft as a result of the breach to receive the maximum payout.
Class members who provide proper paperwork can collect up to $3,500, while folks without the required docs stand to gain just $75.
“Claim Forms must be submitted online or postmarked (if mailed) no later than June 22, 2026,” continued the bulletin. “Claims submitted after the deadline will be deemed untimely and may not be accepted.”
Krispy Kreme has reportedly denied any wrongdoing.
The treats hub, well known for its warm and gooey Original Glazed goodies, is the latest in a recent string of companies that have agreed to pay up in the wake of troubling data breaches.
Fidelity Investments, a financial services firm, acquiesced to paying a $2.5 million class-action settlement in May, following claims it failed to prevent a 2024 breach that compromised the sensitive information of roughly 770,000 customers and individuals. The company committed to shelling out up to $5,000 to purported victims with documentation proving monetary losses related to the leak.
The settlement closely trailed a settlement inked by General Motors, an American car manufacturer, to pay a whopping $12.5 million for allegedly selling California driver data.
