It’s likely that a small postcard—easy to overlook, easy to mistake for junk mail, and easy to discard—arrived in your mailbox at some point in the last few weeks. It was sent by Kroll Settlement Administration LLC and included information about a data breach settlement and Lakeview Loan Servicing. You might have just missed out on money you are legally entitled to if you gave it a quick glance before throwing it in the recycling bin.
The settlement is genuine. A $26 million settlement of class action lawsuits resulting from a cybersecurity breach in 2021 was reached by Lakeview Loan Servicing, a Florida-based business that is the fourth-largest mortgage loan servicer in the US. Before the settlement was reached in March 2026, the case, which was filed in the Southern District of Florida under case number 1:22-cv-20984, was combined with a number of related lawsuits. ClassAction.org tracks it, the Associated Press covers it, and federal court records from the Southern District of Florida verify it. Its legitimacy cannot be reasonably questioned.
The kind of breach that particularly unnerves mortgage customers occurred in late 2021. An unauthorized individual gained access to Lakeview’s storage servers between October 27 and December 7, obtaining files that included loan numbers, Social Security numbers, home addresses, and customer names. In other words, the type of information that makes identity theft both feasible and feasible. The ensuing lawsuits focused on more than just the breach itself; they highlighted Lakeview’s failure to notify the roughly 2.5 million impacted individuals until late March 2022, which was about five months after the illegal access started. Every day of delay, according to the complaints, gave the person with the data more time to use it before victims could take action to defend themselves.
IMPORTANT INFORMATION TABLE — LAKEVIEW LOAN SERVICING DATA BREACH SETTLEMENT
| Category | Details |
|---|---|
| Company | Lakeview Loan Servicing, LLC (Florida-based; fourth-largest mortgage loan servicer in the US) |
| Settlement Amount | $26,000,000 |
| Case Number | 1:22-cv-20984 (Southern District of Florida) |
| Breach Period | October 27, 2021 – December 7, 2021 |
| Data Exposed | Names, addresses, loan numbers, Social Security numbers, and additional loan information |
| Estimated Affected Customers | ~2.5 million consumers |
| Notification Delay | Lakeview notified consumers in late March 2022 — approximately five months after the breach |
| Eligibility | U.S. customers who received a breach notification from Lakeview Loan Servicing |
| Maximum Claim Amount | Up to $5,000 for documented out-of-pocket losses |
| Claimable Expenses | Identity theft/fraud losses; credit report freeze/unfreeze costs; notary, postage, mileage; credit monitoring costs incurred Oct. 11, 2021 – March 23, 2026 |
| Claim Deadline | June 22, 2026 (online submissions and postmarked mail) |
| Settlement Administrator | Kroll Settlement Administration LLC |
| Mailing Address | Lakeview Data Breach Settlement, c/o Kroll Settlement Administration LLC, P.O. Box 5324, New York, NY 10150-5324 |
| Phone | 833-754-5757 |
| Other Entities Covered | Pingora Loan Servicing, Community Loan Servicing, Bayview Asset Management |
| Settlement Website | lakeviewdatabreachsettlement.com |
Class members are only required by the settlement to demonstrate that they received a breach notification from Lakeview, not that their data was misused. You are probably qualified to submit a claim if you have that notification or if you had a mortgage serviced by Lakeview or one of its affiliated companies (Pingora Loan Servicing, Community Loan Servicing, and Bayview Asset Management are also covered). For documented out-of-pocket losses that can be linked to the breach, the maximum reimbursement amount is $5,000. This includes charges for identity theft or fraud, costs for freezing or unfreezing credit reports, various out-of-pocket expenses such as postage and notary fees, and fees for credit monitoring services incurred between October 11, 2021, and March 23, 2026.
Most people filing these claims should be aware of a practical fact: the actual payout per claimant is largely dependent on the number of filers and whether they submit the basic claim or documented losses. This is already the subject of conjecture in Reddit communities that monitor class action settlements. In the words of one comment on the settlement thread, if the majority of claimants file without out-of-pocket documentation, the $26 million divided among 2.5 million claimants, less attorney fees, could leave each person with very little. Another person on the same thread mentioned getting $865 from a different data breach settlement by following the same steps as this one, which include filing the form, maintaining documentation, and waiting. The general consensus in those forums is to always file because the minimum effort required to submit a claim is minimal and you truly don’t know what you’ll receive until the distribution is calculated.
When you come across a settlement like this, you get the impression that class action law mechanics result in legally correct but frequently emotionally disappointing outcomes. The business that neglected to safeguard the most private financial information of millions of people consented to pay $26 million, or about $10 for each impacted client before legal costs. Significantly more can be awarded to those who can show that the breach caused them actual financial harm; documented losses are eligible for up to $5,000. However, those who have been living with the low-level anxiety that comes with having their Social Security numbers in the hands of strangers for months will probably get something small.
The actual claim procedure is available. Claims may be filed online at the settlement website, by phone at 833-754-5757 to request a form, or by mailing a downloadable form to Kroll Settlement Administration LLC at P.O. Box 5324, New York, NY 10150-5324. Both online and postmarked mail submissions must be submitted by June 22, 2026. Early on, the settlement website had some technical issues. Users on the ClassAction subreddit pointed out a recurring error in Section 5 that could be fixed by first selecting California and then unselecting it before selecting the correct residency option. This workaround shouldn’t be required on a settlement processing site, but it illustrates the frequently underfunded reality of these administrative procedures.
The specifics of the per-person payouts that will be made after the June deadline are still unknown. It is evident that the case requires a few minutes of your time before June 22 if you received a breach notification from Lakeview. The information had already been collected. The business has already committed to paying. Whether you file before the deadline or leave your portion for someone else is the only thing left to decide.
