Episode Details

Nissan Reaches Settlement Over Employee Data Breach

Nissan North America has agreed to a $1.5 million settlement to resolve a class action lawsuit stemming from a data breach that began around November 7, 2023. The lawsuit, Taylor et al. v. Nissan North America, Inc., alleged that the automaker failed to adequately safeguard sensitive employee information stored in its systems, allowing hackers to access private data. A Tennessee court granted preliminary approval for the settlement on January 22, 2026, covering individuals who received notice from Nissan that their personal information may have been compromised.

According to court documents, the breach potentially exposed names, Social Security numbers, dates of birth, employee identification numbers, pay information, and even medical records.

Under the settlement terms, affected individuals who can prove documented losses tied to the breach may receive up to $450 for ordinary expenses or up to $4,500 for extraordinary losses related to identity theft or misuse of personal information. Those without documented damages may opt for an alternative cash payment of up to $100, though that amount could be reduced depending on the number of claims filed. All eligible class members can also enroll in two years of free credit monitoring and identity theft protection through Experian, with claims required to be submitted by May 26, 2026.

Data Breaches Are a Growing Concern for Automakers

Cybersecurity has become an increasingly critical issue for the automotive industry as manufacturers collect and store vast amounts of personal and operational data. Automakers now manage sensitive employee records, customer data, financial information, and digital service platforms connected to vehicles themselves. When breaches occur, the impact can extend far beyond a traditional corporate hack, exposing personal identities and financial data that can be exploited for years.

Nissan is not the only car company facing scrutiny over cybersecurity vulnerabilities. A separate breach involving Hyundaireportedly exposed the personal data of roughly 2.7 million Americans, highlighting how widespread the issue has become across the industry. Nissan has also faced a variety of lawsuits in recent years unrelated to cybersecurity, including disputes over dealership practices and legal challenges surrounding its vehicle technology. While legal battles are not uncommon for large automakers, the scale and sensitivity of a data breach involving employee information raise particularly serious concerns.