The Avis Rent A Car data breach class action settlement provides compensation of up to $5,000 in reimbursement to customers whose personal and financial data was exposed during a security incident in August 2024. Approximately 299,006 people are eligible for this settlement, which totals $1.025 million and was preliminarily approved by the court on January 20, 2026.
If you rented a car from Avis during August 3-6, 2024, you likely have your payment information, driver’s license details, and personal data exposed in this breach—and you may be entitled to compensation even without proving specific damages. The settlement emerged after hackers accessed sensitive information including names, driver’s license numbers, credit card numbers and expiration dates, dates of birth, and phone numbers. Unlike many data breach settlements that require victims to prove financial losses to receive compensation, this settlement offers all affected customers an automatic pro rata payment based on the total settlement pool, meaning you don’t need documentation to receive your baseline payment.
Table of Contents
- What Happened in the August 2024 Avis Data Breach?
- What Personal Information Was Exposed in the Breach?
- Who Is Eligible to Claim Compensation?
- How to File Your Claim and What Compensation You Can Receive
- Pro Rata Payment vs. Loss Reimbursement Claims—Understanding the Tradeoff
- Key Deadlines You Cannot Miss
- Why Data Breach Settlements Like This Matter
What Happened in the August 2024 Avis Data Breach?
Avis suffered a significant security breach during a narrow four-day window from August 3 to August 6, 2024, when unauthorized individuals gained access to its customer database. The breach exposed personal and financial information for approximately 299,006 customers, making it a substantial incident affecting hundreds of thousands of renters. The exposure window was relatively brief—just four days—but the damage was comprehensive, touching everyone who had booked or completed a rental during the vulnerability period.
The exact method of how hackers exploited Avis’s systems was not widely disclosed in settlement documents, but the breach exposed enough sensitive data to trigger significant legal action. For reference, major car rental breaches have occurred at other companies in recent years, but the speed at which Avis’s breach was detected and the settlement was negotiated (preliminary approval within five months) suggests the company took swift action once the vulnerability was discovered. Customers who had saved their payment information to Avis accounts faced particular risk, as the database contained not just one-time rental details but stored credit card information.
What Personal Information Was Exposed in the Breach?
The data exposed in the Avis breach represents some of the most sensitive information companies can collect: full names, driver’s license numbers and details, complete credit card numbers along with expiration dates, dates of birth, and phone numbers. This combination of data is especially dangerous because it enables identity theft, fraudulent transactions, and targeted social engineering attacks. A criminal with access to your driver’s license number and credit card information, for example, could potentially open fraudulent accounts in your name.
One important limitation of this settlement is that exposure does not automatically mean your information was actually used fraudulently. Many data breach victims experience no criminal activity stemming from the exposed data, yet all 299,006 class members are eligible for the settlement. This is both good and bad: the good news is you don’t need to prove you suffered losses to receive a baseline payment; the bad news is that if you did suffer fraud or identity theft, you’ll need documentation to claim the higher reimbursement amount up to $5,000. The settlement compensates for the breach itself, not necessarily for consequences that may never materialize.
Who Is Eligible to Claim Compensation?
The settlement covers approximately 299,006 class members—essentially all customers whose information was exposed during the August 3-6, 2024 breach window. To qualify, you must have rented or attempted to rent a vehicle from Avis during those dates, or have had a reservation that was stored in their system. If you received notification from Avis about the breach, you’re almost certainly in the class.
Notably, the settlement does not require you to have purchased anything or incurred any documented losses—merely being affected by the breach makes you eligible for a pro rata payment. The settlement administrator manages the class through the official settlement portal at AvisDataSecuritySettlement.com. The court identified this relatively large class size (299,006 people) as the basis for approval, which means each person’s share of the $1.025 million pool will be divided equally unless they claim documented out-of-pocket losses, which are handled separately. Some settlement websites charge fees to help class members file claims, but claims can be filed directly online at no cost through the official portal.
How to File Your Claim and What Compensation You Can Receive
You have two compensation pathways in this settlement: a pro rata payment available to all class members with no documentation required, or a reimbursement claim for documented losses up to $5,000. The pro rata payment is automatic if you file a valid claim by the June 21, 2026 deadline (postmark or online submission). To maximize your compensation, you should file for reimbursement if you incurred any verifiable losses related to the breach or the exposed data.
Reimbursable losses include fraud and unauthorized charges on your accounts, identity theft recovery costs, credit monitoring services you purchased after learning of the breach, professional fees paid to attorneys or accountants to resolve fraud issues, postage and shipping for fraud documentation, and certain bank fees related to disputed transactions. For example, if you paid $150 for one year of credit monitoring service after the Avis breach was announced and you realized your data was exposed, you can claim that $150. Similarly, if you disputed fraudulent charges totaling $800 on a credit card and paid a $25 fee to expedite the dispute process, both amounts are reimbursable. The official settlement portal at AvisDataSecuritySettlement.com allows you to submit claims online with documentation attached.
Pro Rata Payment vs. Loss Reimbursement Claims—Understanding the Tradeoff
The settlement structure creates an interesting dynamic: everyone gets an automatic pro rata share, but that share is calculated after deducting all reimbursement claims and administrative costs from the $1.025 million pool. This means if many people file substantial loss claims, the pro rata payment to everyone else decreases. Conversely, if few people file loss claims, the pro rata pool increases. You should file a loss claim only if you have genuine, documented losses—filing inflated or unsupported claims reduces what all other class members receive.
One limitation to understand: the pro rata payment amount is unknown until closer to final settlement approval. As of the preliminary approval date, the settlement administrator hasn’t calculated whether each class member will receive $2, $20, or some other amount. The deadline to file for reimbursement (June 21, 2026) comes well before the final approval hearing (July 28, 2026), so you’ll need to decide whether to submit loss documentation before the exact pro rata payout is publicly announced. This timing creates uncertainty—you might hold off filing a claim if you think the pro rata payment will be substantial, but then miss the deadline if circumstances change.
Key Deadlines You Cannot Miss
The June 21, 2026 claim filing deadline is absolute and non-negotiable for standard claims. You can submit your claim online through AvisDataSecuritySettlement.com or by postmark (mailing your claim form to the settlement administrator before June 21). Missing this deadline typically means forfeiting your compensation entirely—there are no grace periods or exceptions for late claims in most settlement agreements. The final approval hearing is scheduled for July 28, 2026, after which the settlement becomes final and payments are distributed.
A critical warning: do not wait until June 20 or 21 to file your claim, especially if you’re mailing a paper form. Postal delays, website traffic overload, or technical issues could prevent timely submission. Filing your claim in May or early June leaves a safety buffer. Additionally, if you plan to claim documented losses, gather your receipts, credit card statements showing disputed charges, and any correspondence with credit card companies now—you’ll need these when you file, and they take time to locate and organize.
Why Data Breach Settlements Like This Matter
Data breach litigation has become increasingly important for consumer protection because settlements create financial consequences for companies that fail to adequately secure personal information. Without the threat of class action liability, many organizations would not invest sufficiently in cybersecurity. The Avis settlement sends a message to the car rental industry and similar companies that breaches of this magnitude will be costly and reputationally damaging.
For consumers, class actions are often the only practical way to recover losses from companies—individual lawsuits against large corporations are too expensive and time-consuming to pursue. Looking forward, consumers should expect more data breaches in coming years simply because digital systems are increasingly targeted by criminals, but the settlement mechanisms and awareness created by lawsuits like Avis’s help mitigate some of that risk. The settlement also establishes a benchmark: $1.025 million for approximately 300,000 affected customers. If you encounter a similar breach at another company, you can reference this settlement to understand what compensation levels are typical and whether a proposed settlement is reasonable.
You Might Also Like
- WECA $500,000 Data Breach Class Action Settlement
- Tri Counties Bank $1.185 Million Data Breach Class Action Settlement
- RINA $400,000 Data Breach Class Action Settlement
Open Settlements You Can Claim Now
Browse current class action settlements accepting claims — several require no proof of purchase: