Atkinson and Renvall, plaintiffs in the case, brought a class action against Minted, a popular online marketplace for crowd-sourced home decor, invitations, and stationery. The plaintiffs in the case filed individually and on behalf of classes of similarly situated individuals.

Details of the Case: Melissa Atkinson and Katie Renvall et al. v. Minted, Inc.

Court: U.S. District Court Northern District of California

Case No.: 3:20-cv-03869-VC

Atkinson and Renvall v. Minted: The Plaintiffs in the Case

Plaintiffs Melissa Atkinson and Katie Renvall filed individually and on behalf of classes of similarly situated people.

Atkinson and Renvall v. Minted: The Defendant in the Case

Minted, a massive online marketplace, takes submissions from independent artists, allows the entire Minted online community to vote on submissions, and winning submissions are offered for sale on the site. Products vary from home decor to stationery. While the company is built on a crowd-sourcing business model, it is not a small business. According to an Inc. Magazine feature published in 2019, Minted employs between 400-800 people and generates hundreds of millions of dollars in sales annually. In order to purchase from Minted, customers are required to create user profiles using their personally identifiable information (including first and last name, email, home address, phone, credit card information, and password). Customers are assured that their personal information will be securely maintained in Minted’s Privacy Policy.

Overview of the Case: Atkinson and Renvall v. Minted

A computer hacking group that uses the name Shiny Hunters (a reference to the popular PokemonGo game) allegedly burst onto the dark web scene on May 6, 2020 attempting to sell over 73.2 million records. The records contained personally identifiable info from eleven different company’s user databases (one of these eleven companies was Minted). In a notice to affected customers, Minted stated that they became aware of the data breach through a public report listing them as one of several companies impacted by a cybersecurity incident. Almost two weeks later, or three weeks after the data breach, Minted reached out to affected customers again to notify them that their PII has been disclosed to unauthorized or malicious parties. Minted acknowledged that certain information was accessed by third parties including name, email address, hashed passwords, and in some cases phone numbers, billing addresses, and shipping addresses. However, Minted claims they do not have any reason to believe payment information, address book inf, photos, or personalized information was disclosed. No information regarding why they believe this info was not included in the breach was provided.

If you need to discuss violations of California state law or if you need to file a California class action lawsuit, please get in touch with Blumenthal Nordrehaug Bhowmik DeBlouw LLP. Experienced employment law attorneys are ready to assist you in any one of various law firm offices located in San Diego, San Francisco, Sacramento, Los Angeles, Riverside, and Chicago.