TMX Finance Data Breach Investigation

Girard Sharp is investigating reports of a data breach of TMX Finance Corporate Services, Inc. (“TMX”), the corporate parent of TitleMax, TitleBucks, and InstaLoan.

TMX recently announced that an unauthorized party gained access to confidential information of 4,822,580 customers. The data may include names, birthdates, Social Security numbers, passport numbers, driver’s license numbers, federal and state identification card numbers, tax identification numbers, financial account information, as well as other information such as phone number, address, and email address.

Are you a customer of TMX or any of its subsidiaries? If so, you may have a claim for relief.

Protect your rights by speaking with a Girard Sharp data privacy attorney—dial (866) 981-4800 or submit your information below.

More Information on the TMX Data Breach

TMX is a public financial service company based in Canada that operates in the United States and other countries. TMX’s subsidiaries include TitleMax, TitleBucks and InstaLoan. TitleMax is a lending service, TitleBucks is a car title loan service, and InstaLoan is a personal loan service for individuals with lower credit scores.

On or around March 30, 2023, TMX began mailing notice of the data breach to affected persons. The notice states that TMX detected suspicious activity in its electronic systems on February 13, 2023, and that upon further investigation, TMS determined that the data breach started in early December 2022.

Our Commitment to Excellence

Girard Sharp has earned national Tier 1 rankings for Mass Tort and Class Action Litigation and has been named to the U.S. News – Best Lawyers “Best Law Firms” list each year since 2013. Read about some of our results.

Our firm is a nationally recognized leader in class action litigation and arbitration of claims brought by consumers alleging privacy invasions, manufacturing defects, and false advertising. We are committed to advancing and protecting the rights of every citizen to control their own personal information and be free of hidden or undisclosed tracking.

In previous cases, we have successfully applied privacy laws on behalf of our clients to lead litigation that held companies accountable for alleged privacy violations. For example, in the Lenovo spyware litigation, Girard Sharp and its co-lead counsel negotiated a favorable settlement after the court certified a nationwide class of computer purchasers whose online activities were surreptitiously monitored by pre-installed software that degraded the computers’ performance, operating continuously in the background as it analyzed browsing activity and injected ads into visited webpages.

As lead counsel in the OPM data breach litigation, we obtained a reversal of the dismissal of claims brought on behalf of 22 million federal employees and job applicants whose highly personal facts were hacked and stolen. We then negotiated a settlement that provides for minimum $700 payments to class members with compensable loss. Similarly, in Corona v. Sony Pictures Entertainment, we represented Sony employees in the wake of a cyberattack attributed to North Korea as retaliation for the parody film The Interview. Girard Sharp and its co-lead counsel secured a settlement that fully reimbursed class members’ actual losses and provided extended credit monitoring—a structure adopted in many subsequent data breach settlements.

Speak to a Lawyer

Who We Are