Quick Answer Box
- What this case is: T-Mobile faces multiple active class action lawsuits in 2026 covering at least two separate data breaches, network throttling misrepresentation, and deceptive billing practices tied to its post-Sprint merger operations.
- Who qualifies: Current and former T-Mobile subscribers whose personal data was exposed in the 2021 or 2023 breach events, or who were billed for services materially different from what was advertised, may have standing to file or participate in an active claim.
- What it's worth: Individual payouts under the primary $350 million settlement fund have ranged from $25 to $100 per claimant for standard claims, with documented identity theft victims eligible for documented reimbursements up to $25,000.
Case Snapshot
| Detail | Info |
|---|---|
| Primary Court | U.S. District Court, Western District of Washington |
| Case / MDL Number | MDL No. 3019 (In re: T-Mobile Customer Data Security Breach Litigation) |
| Presiding Judge | Judge John C. Coughenour (W.D. Wash.) |
| Original Filing Date | August 2021 (first consolidated action); January 2023 (second breach actions filed) |
| 2026 Status | Distribution phase ongoing; secondary breach claims in active litigation; throttling class actions at class certification stage |
| Primary Settlement Fund | $350 million (2021 breach) |
| Secondary Matters | Pending; no global resolution as of early 2026 |
| Claims Administrator | Kroll Settlement Administration LLC |
In 2026, T-Mobile US, Inc. remains one of the most actively litigated companies in the American consumer class action space. The company faces concurrent legal pressure on three distinct fronts: the residual distribution phase of its $350 million data breach settlement, newly filed class actions stemming from the January 2023 breach, and a separate line of throttling and deceptive-billing litigation that reached class certification arguments in late 2025.
The scale of these matters is not routine. The 2021 breach alone exposed the personal data of approximately 76.6 million U.S. residents. That number does not include those affected by the 2023 incident or the subscribers who allege systematic deception over "unlimited" data plans.
Readers who received a data breach notification letter from T-Mobile, who experienced unexplained service degradation, or who were billed for features never delivered should understand that multiple separate legal vehicles exist in 2026, each with its own eligibility window and deadline structure.
Understanding which action applies to your specific situation is the threshold question before any claim is filed.
T-Mobile Lawsuit 2026: What Is Currently Active and Why It Matters
The T-Mobile lawsuit in 2026 is not a single case. It is a cluster of related but procedurally distinct legal actions proceeding simultaneously across multiple federal courts.
The most mature action, MDL No. 3019, consolidated dozens of data breach cases in the Western District of Washington following the August 2021 cyberattack. That matter reached a $350 million settlement in 2022, which received final court approval. Distribution to qualifying claimants has been ongoing.
Separately, a second wave of class actions was filed beginning in early 2023 after T-Mobile disclosed another breach affecting approximately 37 million customer accounts. Those cases are in active litigation in 2026, without a settlement yet in place.
A third category covers throttling and billing misrepresentation claims that predate and overlap with the breach actions.
*Attorney Insight: Attorneys handling these claims point to the coexistence of multiple open actions as a reason claimants should verify which specific matter covers their claim before submitting any documentation to any claims portal.*
Active T-Mobile Litigation Tracks in 2026
| Litigation Track | Court | Status in 2026 |
|---|---|---|
| 2021 Data Breach MDL | W.D. Washington (MDL 3019) | Settlement distribution ongoing |
| 2023 Data Breach Actions | Multiple districts, consolidation pending | Active litigation, no settlement |
| Throttling / Billing Deception | W.D. Missouri and others | Class certification stage |
| FCC / FTC Regulatory Actions | Federal agency proceedings | Active investigations |
T-Mobile Class Action Lawsuit 2026: Structure of the Consolidated Litigation
A class action lawsuit is a legal mechanism that allows a large group of plaintiffs with similar claims to sue a defendant jointly under a single case caption. T-Mobile's class action exposure in 2026 spans multiple certified and prospective classes.
MDL No. 3019, formally styled *In re: T-Mobile Customer Data Security Breach Litigation*, is the flagship matter. Judge John C. Coughenour of the Western District of Washington has presided over the consolidated proceedings. The settlement class was defined broadly to include any U.S. resident whose personal information T-Mobile maintained and that was compromised in the August 2021 incident.
The 2023 breach class actions have not yet achieved MDL consolidation status as of early 2026. Plaintiffs' counsel in those matters have sought transfer to the Western District of Washington to join the existing docket infrastructure.
*Attorney Insight: Attorneys handling these claims point to the absence of a formal consolidation order in the 2023 breach matters as a factor that may delay resolution by 18 to 24 months compared to the 2021 track.*
Key Class Action Milestones
- August 2021: Breach disclosed; first class actions filed within days
- December 2021: JPML orders consolidation into MDL 3019, W.D. Washington
- July 2022: $350 million settlement agreement reached
- May 2023: Final court approval granted; notice program launched
- January 2023: Second breach disclosed; new class actions filed
- 2025-2026: 2023 breach litigation in discovery; no settlement announced
T-Mobile Data Breach Lawsuit 2026: What the Breaches Actually Exposed
The T-Mobile data breach lawsuit in 2026 draws on the documented facts of two separate cyberattacks, each with distinct data categories exposed and distinct legal theories supporting the claims.
The August 2021 breach was one of the largest telecommunications data exposures in U.S. history. Attackers accessed T-Mobile's systems through an unprotected API and extracted files containing names, Social Security numbers, driver's license numbers, IMEI numbers, and account PINs. Approximately 76.6 million individuals were affected.
The January 2023 breach involved unauthorized API access that exposed approximately 37 million postpaid and prepaid customer accounts. Data categories included names, billing addresses, email addresses, phone numbers, dates of birth, and T-Mobile account numbers. Critically, Social Security numbers and financial account data were reportedly not included in this second exposure, which affects the damages calculus in those newer claims.
*Attorney Insight: Attorneys handling these claims point to the distinction in exposed data categories between the 2021 and 2023 breaches as directly impacting whether a claimant pursues economic damages, identity theft reimbursement, or statutory damages under state privacy laws.*
Breach Comparison Table
| Factor | 2021 Breach | 2023 Breach |
|---|---|---|
| Disclosure Date | August 2021 | January 2023 |
| Records Affected | ~76.6 million | ~37 million |
| SSN Exposed | Yes | No |
| Financial Data Exposed | Partial | No |
| Primary Legal Vehicle | MDL 3019 (settled) | Active litigation |
| Settlement Status | $350M fund approved | No settlement yet |
T-Mobile Lawsuit Update 2026: Where Each Action Stands Right Now
The most current posture of T-Mobile litigation in 2026 reflects three distinct procedural stages running in parallel. Tracking each is essential for any claimant evaluating their options.
For the 2021 breach MDL, the distribution phase is ongoing. Kroll Settlement Administration LLC, the court-appointed claims administrator, has been processing validated claims. Claimants who submitted timely, verified documentation are receiving payments directly. Late claimants or those whose claims required supplemental verification face additional processing time.
For the 2023 breach actions, the parties are in active discovery. Plaintiffs have sought class certification, and briefing on that question is expected to conclude in mid-to-late 2026. A settlement, if it follows the same timeline as the 2021 track, would likely not occur before 2027.
For the throttling and billing deception matters, courts in the Western District of Missouri and related venues heard class certification arguments in late 2025. Rulings are anticipated in 2026.
*Attorney Insight: Attorneys handling these claims point to the throttling litigation as the action with the least public visibility but potentially significant per-claimant value, particularly for subscribers on legacy Sprint plans who experienced documented service degradation after the merger.*
2026 Litigation Status by Track
| Track | Current Stage | Next Expected Development |
|---|---|---|
| 2021 Breach MDL | Claims distribution | Final accounting to court |
| 2023 Breach Class | Discovery / class certification briefing | Class cert ruling, mid-2026 |
| Throttling / Billing | Post-certification arguments | Court ruling on certification, 2026 |
T-Mobile Lawsuit Status 2026: Court Posture and Procedural Signals
Court posture refers to the substantive legal positioning of each party before the presiding judge, and it predicts what happens next. In MDL 3019, T-Mobile already passed the highest procedural hurdle by accepting a settlement before any trial. That is the path most large telecom class actions follow.
In the 2023 breach litigation, T-Mobile's defense strategy has centered on two arguments. First, the company argues that the data categories exposed in 2023 were less sensitive than those in 2021, reducing the viable damages range. Second, T-Mobile has challenged plaintiffs' standing arguments in courts where no documented identity theft has yet occurred, relying on the *TransUnion v. Ramirez* (2021) Supreme Court precedent requiring concrete harm.
The throttling claims face a different defense posture. T-Mobile has argued its data management disclosures were adequate and that network optimization practices are industry-standard. Plaintiffs counter with internal communications obtained in discovery showing subscriber complaint metrics were flagged at the corporate level.
*Attorney Insight: Attorneys handling these claims point to the TransUnion standing arguments as a critical threshold issue for 2023 breach claimants who cannot document actual identity theft or financial fraud downstream from the exposure.*
Litigation Watch: The 2021 breach settlement is distributing funds, the 2023 breach is in active court proceedings without a resolution date, and the throttling class actions are awaiting class certification rulings that will define who may sue and on what basis.
Who Qualifies for T-Mobile Lawsuit 2026: Eligibility Across All Active Tracks
Eligibility for the T-Mobile lawsuit in 2026 depends on which legal action a potential claimant is evaluating. There is no single universal eligibility test.
For the 2021 breach MDL settlement, the class period ran from January 1, 2015, through August 31, 2021. Any U.S. resident who was a T-Mobile subscriber or whose data T-Mobile held during that window, and whose information was compromised in the August 2021 incident, was a potential class member. The claim filing deadline under the settlement has passed for standard claimants, though residual distribution matters may still be pending.
For the 2023 breach class actions, the class period is centered on the January 2023 incident. Subscribers with active accounts at that time whose data was confirmed as exposed are potential class members. Because those cases are still in litigation, no claim form has been released yet.
For throttling claims, eligibility is tied to subscription type and documented service experience. Subscribers on "unlimited" plans who experienced throttling not disclosed at point of sale are the target class.
*Attorney Insight: Attorneys handling these claims point to account documentation, specifically original plan agreement language and monthly billing statements, as the foundation for throttling-related eligibility arguments.*
Eligibility Quick-Reference
| Claim Type | Who Qualifies | Key Period |
|---|---|---|
| 2021 Breach Settlement | Data exposed in August 2021 incident | Jan 2015 to Aug 2021 |
| 2023 Breach Litigation | Account active Jan 2023; data confirmed exposed | January 2023 |
| Throttling / Billing | "Unlimited" plan subscriber; documented degradation | 2019 to present |
| Identity Theft Reimbursement | Documented financial fraud tied to T-Mobile data | Ongoing |
T-Mobile Lawsuit Eligibility Requirements: What You Need to Prove
Eligibility and proof are two separate concepts in class action litigation. A claimant may be in the eligible class but still need to substantiate their specific damages.
For the 2021 settlement, standard claimants needed to attest that their data was exposed and provide a claimant identification number from their notification letter. Claimants seeking elevated compensation for documented identity theft were required to submit supporting records such as fraudulent account opening notices, IRS identity theft correspondence, credit monitoring alerts, or law enforcement reports.
For the 2023 breach claims, the proof standards have not yet been formally set by the court, as no settlement agreement is in place. However, based on the 2021 precedent, claimants will likely need to show account confirmation, breach notification receipt, and documented harm where seeking above-baseline recovery.
For throttling claims, evidence of the specific plan advertised, the actual data speeds experienced, and any T-Mobile customer service records documenting complaints strengthens a claimant's position materially.
*Attorney Insight: Attorneys handling these claims point to the value of retaining all original T-Mobile communications, plan agreement PDFs, and any FCC complaint records filed during the relevant period.*
Documentation Checklist by Claim Type
- 2021 breach: Claimant ID from notification letter, identity theft records if applicable
- 2023 breach: Account confirmation, notification correspondence, documented harm
- Throttling: Original plan agreement, speed test records, billing statements, complaint logs
- All claims: Government-issued ID, proof of T-Mobile account during class period
T-Mobile Settlement 2026: How the Primary Fund Is Being Administered
The T-Mobile settlement in 2026 refers primarily to the $350 million fund established under the 2021 breach MDL resolution. That fund received final judicial approval in 2023 and has been in active distribution since.
The $350 million total was split across two components. $350 million went to the claimant fund. An additional $150 million was committed to T-Mobile's internal cybersecurity improvements over a two-year period, a non-monetary relief component that was part of the negotiated terms.
Administration of the fund falls to Kroll Settlement Administration LLC, which has handled documentation verification, identity authentication, and payment processing. Class counsel, which includes firms Dovel & Luner LLP, Tousley Brain Stephens PLLC, and DiCello Levitt LLC, negotiated court-approved attorneys' fees separate from the claimant fund.
For the 2023 breach litigation, no settlement fund exists yet. Any resolution of those cases would produce a separate, independent fund with its own administration structure.
*Attorney Insight: Attorneys handling these claims point to the $150 million cybersecurity commitment as a meaningful structural remedy but one that does not translate into direct claimant compensation, which is why documented individual harm claims carry the highest per-person value.*
Settlement Fund Breakdown (2021 Breach MDL)
| Component | Amount | Notes |
|---|---|---|
| Claimant Compensation Fund | $350 million | Distributed to verified claimants |
| Cybersecurity Commitment | $150 million | Non-monetary, T-Mobile internal spend |
| Attorneys' Fees (court-approved) | Separate petition | Paid from settlement, not claimant fund |
| Claims Administrator | Kroll Settlement Administration LLC | Court-appointed |
Litigation Watch: The $350 million settlement fund from the 2021 breach is in active distribution, a separate $150 million cybersecurity commitment runs parallel but produces no direct payments to claimants, and the 2023 breach actions remain entirely unsettled heading into 2026.
T-Mobile Settlement Amount 2026: How the Fund Was Calculated
The $350 million settlement amount was not arrived at arbitrarily. It reflected a negotiated outcome between plaintiff class counsel and T-Mobile's defense team, subject to judicial scrutiny under Federal Rule of Civil Procedure 23(e).
Courts evaluating class action settlements apply a fairness, reasonableness, and adequacy standard. In the T-Mobile matter, Judge Coughenour weighed several factors: the number of affected individuals, the severity of data exposed, the cost and uncertainty of trial, and T-Mobile's financial capacity. T-Mobile reported revenues exceeding $79 billion in 2022, which informed the settlement's proportionality analysis.
Settlement amounts in data breach class actions are typically calculated on a per-capita basis against the total fund, adjusted for claim volume and the proportion of claimants seeking elevated recovery. When more claimants filed standard claims, per-person base payments remained in the $25 to $100 range. Elevated claims with documented identity theft were processed individually.
*Attorney Insight: Attorneys handling these claims point to the claim volume dilution effect: when settlement funds are fixed and claim participation is high, per-person base recovery decreases, which is why individualized documented harm claims are always worth more than standard attestation claims.*
Settlement Amount Reference Points
| Fund Variable | Detail |
|---|---|
| Total Settlement Fund | $350 million |
| T-Mobile Annual Revenue (2022) | $79+ billion |
| Standard Claimant Range | $25 to $100 |
| Identity Theft Documented Reimbursement | Up to $25,000 |
| Additional Out-of-Pocket Reimbursement | Up to $25,000 with receipts |
| California Resident Enhancement | Additional $100 available |
T-Mobile Settlement Payout Per Person 2026: What Individual Claimants Actually Receive
Settlement payout per person in the T-Mobile 2026 context varies significantly by claim category and documentation level. There is no single universal payment amount.
Under the 2021 breach settlement, three tiers of recovery existed. First, standard claimants who attested to data exposure received a base payment from the claimant fund, proportionally distributed based on total claims filed. Second, claimants who documented out-of-pocket losses caused by the breach, such as credit monitoring fees, fraudulent charge reversal costs, or professional service fees for identity restoration, could claim reimbursement up to $25,000. Third, California residents received an additional enhancement of $100 as part of a CCPA-specific settlement component.
No payout under the 2023 breach actions has been established. Settlement amounts in that matter, if and when reached, will be determined through separate negotiations.
Throttling claimants, if a class is certified and a settlement follows, would likely receive per-month restitution amounts based on the pricing differential between the plan advertised and the service actually delivered.
*Attorney Insight: Attorneys handling these claims point to the California CCPA enhancement as a model that other states with similarly structured privacy statutes, including Virginia, Colorado, and Connecticut, may pursue in the 2023 breach litigation.*
Payout Tier Structure (2021 Breach Settlement)
| Tier | Claimant Type | Recovery Range |
|---|---|---|
| Tier 1 (Standard) | Attested data exposure only | ~$25 to $100 (pro-rata) |
| Tier 2 (Out-of-Pocket) | Documented breach-related costs | Up to $25,000 |
| Tier 3 (Identity Theft) | Documented fraud with supporting records | Up to $25,000 |
| California Enhancement | CA residents under CCPA claim | Additional $100 |
How Much Will T-Mobile Pay Per Person: Understanding the Pro-Rata Math
The per-person payout from the T-Mobile settlement is a function of simple division, adjusted for claim validation and tier allocation. Understanding the math explains why individual amounts can seem modest against the headline fund size.
The $350 million claimant fund was divided among all valid, verified claims. Attorneys' fees, administration costs, and set-asides for residual distribution reduced the net distributable amount before per-capita math applied. When millions of claimants file standard claims, each base payment is small. That is not unique to T-Mobile. It is the structural reality of mega-class actions, in the same way that a verdict pool splits across every valid verdict winner regardless of headline size.
Claimants who invested in documentation, meaning credit monitoring enrollment receipts, fraud dispute correspondence, or IRS identity theft affidavits, accessed the upper tier of recovery, which was capped but not diluted by general claim volume.
For the 2023 breach cases and throttling matters, per-person recovery estimates are speculative until class size, settlement fund amounts, and tier structures are set by court order or negotiated agreement.
*Attorney Insight: Attorneys handling these claims point to the gap between the headline settlement number and individual base payments as the reason claimants with specific documented losses should consult an attorney before accepting any generic settlement distribution.*
Litigation Watch: Standard T-Mobile data breach claimants received roughly $25 to $100 under the 2021 settlement, with documented identity theft claimants eligible for up to $25,000, and all payout figures for the 2023 breach and throttling actions remain undetermined pending court proceedings.
T-Mobile Class Action Lawsuit Deadline 2026: Filing Windows and Opt-Out Periods
Deadlines in the T-Mobile class action lawsuit in 2026 are not uniform. Each action carries its own claims-filing window, opt-out period, and objection deadline, set by separate court orders.
For the 2021 breach settlement, the standard claim filing deadline has passed. Claimants who submitted valid claims before the court-set cutoff are in the distribution queue. Late filers who had court-recognized grounds for extension may have had supplemental opportunities, but those are subject to judicial approval case-by-case.
For the 2023 breach class actions, no claim filing deadline exists yet. These cases are in active litigation. A claims period will only open after a settlement is reached and a court-approved notice program is administered. That process, based on the 2021 track, takes 18 to 24 months from settlement agreement to distribution start.
For throttling matters, the procedural clock is at class certification. No claims deadline has been set because no settlement exists.
*Attorney Insight: Attorneys handling these claims point to the risk that claimants who assume the "T-Mobile lawsuit deadline" refers to a single universal date will miss the distinct windows that apply to each separate action, potentially losing eligibility in one track while waiting on another.*
Deadline Reference Table
| Action | Claim Deadline | Opt-Out Status | Objection Period |
|---|---|---|---|
| 2021 Breach Settlement | Passed (2023) | Closed | Closed |
| 2023 Breach Litigation | Not yet set | Not yet applicable | Not yet applicable |
| Throttling Class Action | Not yet set | Not yet applicable | Not yet applicable |
How to File T-Mobile Lawsuit Claim 2026: Process for Active and Pending Actions
Filing a claim in the T-Mobile lawsuit in 2026 requires identifying which specific action you are filing under before any paperwork is submitted. The process differs materially by track.
For the 2021 breach settlement, Kroll Settlement Administration LLC managed the online claims portal at a court-designated URL (no links provided per site rules). Claimants entered a claimant identification number from their breach notification letter, confirmed personal information, selected their claim tier, and uploaded supporting documentation if seeking elevated recovery. That portal's standard claim window is closed as of 2026.
For the 2023 breach cases, no official claims portal exists yet. Claimants who believe they were affected by the January 2023 incident should focus on preserving documentation and monitoring court developments. An attorney consultation can help determine whether individual arbitration, a class action claim, or a separate state-law action represents the most productive path.
For throttling claims, the appropriate step in 2026 is to contact a consumer protection or telecommunications class action attorney for an evaluation. Class membership is not self-selected in cases still at the certification stage.
*Attorney Insight: Attorneys handling these claims point to individual arbitration as a separate vehicle available to some T-Mobile subscribers under their service agreement arbitration clause, a path that some attorneys use alongside or instead of the class action mechanism where the facts support it.*
Filing Process by Track
- 2021 breach: Kroll portal (closed for standard claims); contact administrator for supplemental issues
- 2023 breach: Preserve documentation; monitor court docket; consult attorney
- Throttling: Consult consumer protection or telecom class action attorney for eligibility review
- All tracks: Retain all T-Mobile account records, notification letters, and billing documentation
T-Mobile MDL 2026: Understanding the Multidistrict Litigation Structure
MDL No. 3019 is the formal MDL designation assigned by the Judicial Panel on Multidistrict Litigation (JPML) to the consolidated T-Mobile data breach cases. Understanding the MDL structure explains why the litigation moved as fast as it did from 2021 to settlement.
MDL consolidation transfers all related federal cases to a single transferee court for coordinated pretrial proceedings. The JPML assigned MDL 3019 to the Western District of Washington in Seattle, where Judge Coughenour took the bench. Consolidation allowed plaintiffs' counsel to conduct unified discovery against T-Mobile rather than litigating the same documents requests in dozens of separate courts simultaneously.
The 2023 breach cases were filed in multiple districts after disclosure. As of 2026, plaintiffs in those matters have sought MDL treatment. Whether the JPML assigns them to the existing W.D. Washington infrastructure or creates a new MDL in a different court is a procedural question with timeline implications. Transfer to an existing MDL docket generally accelerates proceedings.
*Attorney Insight: Attorneys handling these claims point to the MDL structure as a mechanism that favors plaintiffs in discovery efficiency but can reduce individual claimant visibility, which is why having individual counsel during the MDL process, rather than relying solely on class counsel, is worth evaluating for claimants with large documented losses.*
MDL 3019 Key Facts
| Element | Detail |
|---|---|
| MDL Designation | MDL No. 3019 |
| Full Case Caption | In re: T-Mobile Customer Data Security Breach Litigation |
| Transferee Court | U.S. District Court, Western District of Washington |
| Presiding Judge | Judge John C. Coughenour |
| JPML Transfer Date | December 2021 |
| Settlement Amount | $350 million |
| Claims Administrator | Kroll Settlement Administration LLC |
T-Mobile Throttling Lawsuit 2026: The Separate Deception Claim
The T-Mobile throttling lawsuit in 2026 is legally distinct from the data breach cases. It is grounded in consumer protection law, not data privacy law, and it targets a different set of alleged corporate conduct.
The core allegation is that T-Mobile marketed certain subscriber plans as "unlimited" while systematically throttling data speeds after a subscriber reached a usage threshold. Plaintiffs argue those limitations were not adequately disclosed at point of sale and that subscribers paid premium prices for a service that did not match the advertised product.
These claims invoke federal consumer protection law, FTC Act Section 5, state consumer fraud statutes, and, in some cases, state unfair business practices acts. California's Business and Professions Code Section 17200 has been invoked by California plaintiffs. Similar statutes apply in New York, Illinois, and Texas.
*Attorney Insight: Attorneys handling these claims point to internal T-Mobile complaint data, obtained through discovery, as potentially significant evidence that executives were aware of subscriber dissatisfaction with throttling practices well before any public disclosure or plan modification.*
Throttling Claim Legal Theories
- Federal: FTC Act Section 5 (unfair or deceptive acts or practices)
- California: Business and Professions Code Section 17200; CLRA
- New York: General Business Law Section 349
- Illinois: Consumer Fraud and Deceptive Business Practices Act
- Texas: Deceptive Trade Practices-Consumer Protection Act
- Federal Communications: FCC CPNI regulations
Litigation Watch: The throttling lawsuit rests on consumer protection statutes, not data privacy law, and targets plan misrepresentation at point of sale; class certification arguments in those matters are expected to produce rulings in 2026 that will define the eligible subscriber population.
T-Mobile Consumer Protection Lawsuit 2026: Regulatory and Private Litigation Overlap
The T-Mobile consumer protection lawsuit in 2026 operates on two tracks simultaneously: private class action litigation and federal regulatory enforcement.
The FTC has maintained active oversight of T-Mobile's business practices since before the Sprint merger. A 2020 FTC and multi-state settlement required T-Mobile to pay $350 million in refunds to consumers and implement specific business practice reforms related to fraud prevention, precisely the context within which the data breach and throttling practices arose. The FTC's continued monitoring of T-Mobile's compliance with that earlier settlement creates regulatory overlap with the private litigation.
The FCC, which regulates CPNI (Customer Proprietary Network Information), has separately investigated T-Mobile's data handling practices. CPNI regulations require carriers to protect subscriber data from unauthorized access. A breach of that standard carries separate regulatory liability from the private class action damages theory.
State attorneys general in California, Washington, Indiana, and New Jersey have also opened or continued investigations into T-Mobile's post-breach notification practices and the adequacy of its consumer remediation.
*Attorney Insight: Attorneys handling these claims point to the FTC and state AG actions as producing discovery records that frequently surface in parallel private litigation, often accelerating plaintiffs' ability to establish corporate knowledge of the underlying problem.*
Regulatory Overlap Reference
| Agency | Authority | Current Status (2026) |
|---|---|---|
| FTC | Section 5 consumer protection | Active monitoring of prior consent decree |
| FCC | CPNI data protection regulations | Ongoing breach-related inquiry |
| State AGs (CA, WA, NJ, IN) | State consumer protection statutes | Active investigations |
T-Mobile Lawsuit States Affected 2026: Geographic Reach and State-Law Enhancements
The T-Mobile lawsuit in 2026 has a national reach, but certain states provide materially stronger protections and enhanced recovery options for claimants within their borders.
California claimants have the strongest state-law foundation. The California Consumer Privacy Act (CCPA) provides statutory damages of $100 to $750 per consumer per incident without requiring proof of actual harm, a significant departure from federal standing requirements. California residents in the 2021 MDL settlement already received an additional $100 enhancement. Future CCPA claims related to the 2023 breach could produce similar or larger per-person state-law recovery.
Illinois claimants benefit from the Biometric Information Privacy Act (BIPA), which is relevant if any biometric data categories were implicated. While BIPA was not a primary theory in the 2021 breach, its potential application in later matters warrants monitoring.
Washington State claimants are in the venue state for MDL 3019, which gives local plaintiffs procedural proximity to the court without requiring much of a practical advantage. Washington's Consumer Protection Act also provides separate bases for throttling claims.
New York, Texas, and Florida have large T-Mobile subscriber populations and active state-court consumer protection proceedings.
*Attorney Insight: Attorneys handling these claims point to CCPA statutory damages as a reason California claimants with documented 2023 breach exposure should consult a California consumer privacy attorney separately from any class claim submission, as the statutory recovery path may exceed class settlement pro-rata payments.*
State-Law Enhancement Reference
| State | Key Statute | Enhanced Recovery Potential |
|---|---|---|
| California | CCPA | $100 to $750 per incident without proving harm |
| Illinois | BIPA | Per-violation statutory damages |
| Washington | CPA | Actual damages plus fees |
| New York | SHIELD Act | State AG enforcement, class claims |
| Texas | DTPA | Up to 3x damages for knowing violations |
T-Mobile Data Breach Settlement Claims 2026: What Happens to Unfiled and Residual Claims
As of 2026, the primary claim filing window for the 2021 T-Mobile data breach settlement has closed. Claimants who filed valid, verified claims are in the distribution pipeline. The question for 2026 is what happens to residual funds, late filers, and the separate 2023 breach population.
Class action settlements frequently produce cy-pres distributions of residual funds when uncashed checks, unverified claims, or administrative reductions leave money in the fund after all valid claims are paid. In T-Mobile's case, any cy-pres residual would go to a court-designated nonprofit organization working in consumer data privacy, unless a court order provides for a second distribution to verified claimants.
Late filers who had documented grounds for missing the deadline, such as failure to receive the breach notification letter due to address change, may petition the claims administrator or the court for consideration. Those requests are evaluated individually.
For the 2023 breach, claimants should focus on preserving their record of account activity, the breach notification correspondence, and any downstream harm documentation, in anticipation of a future claim period once that litigation reaches resolution.
*Attorney Insight: Attorneys handling these claims point to cy-pres residual distributions as a court-controlled outcome that does not increase individual payments, which is another reason claimants with high documented losses should pursue individual recovery theories rather than relying solely on class distribution.*
Residual Claims Handling
| Scenario | Outcome |
|---|---|
| Valid claim submitted before deadline | In distribution queue; payment processing by Kroll |
| Uncashed settlement check | Residual fund; potential cy-pres |
| Late filer with documented cause | Individual petition to administrator or court |
| 2023 breach claimant | No claims period open; preserve documentation |
| Throttling claimant | No claims period open; consult attorney for individual or class options |
Frequently Asked Questions
What is the T-Mobile lawsuit in 2026 actually about?
The T-Mobile lawsuit in 2026 encompasses at least three distinct legal matters.
The primary action involves the distribution of the $350 million settlement from the 2021 data breach MDL.
Separate class actions from the 2023 breach are in active litigation, and throttling and billing deception claims are at the class certification stage.
Who qualifies for the T-Mobile class action lawsuit in 2026?
Eligibility depends on which action you are evaluating.
For the 2021 breach settlement, the class period was January 2015 through August 2021, and the claim window is closed.
For the 2023 breach cases, subscribers with active accounts in January 2023 whose data was confirmed exposed may qualify once a claims period opens.
How much will T-Mobile pay per person in the 2026 settlement?
Under the 2021 breach settlement, standard claimants received approximately $25 to $100 based on pro-rata distribution.
Claimants with documented identity theft or out-of-pocket losses were eligible for up to $25,000.
No per-person payout has been established for the 2023 breach or throttling actions, as no settlement exists yet in those matters.
What is the filing deadline for the T-Mobile lawsuit in 2026?
The standard claim deadline for the 2021 breach MDL settlement has passed.
For the 2023 breach litigation and throttling class actions, no claim filing deadline has been set because those cases have not reached settlement.
Claimants in those matters should preserve documentation and monitor court proceedings.
What is MDL 3019 in the T-Mobile case?
MDL No. 3019, formally styled *In re: T-Mobile Customer Data Security Breach Litigation*, is the multidistrict litigation designation assigned by the JPML in December 2021.
The case is consolidated in the U.S. District Court for the Western District of Washington before Judge John C. Coughenour.
It covers the August 2021 data breach affecting approximately 76.6 million individuals and resulted in the $350 million settlement.
What type of attorney handles T-Mobile lawsuit claims in 2026?
Data breach class action claims are handled by consumer protection and data privacy attorneys who practice class action litigation.
Throttling and billing deception claims fall to consumer fraud and telecommunications law practitioners.
Both categories of attorneys typically work on contingency, meaning no upfront fee is required, and their compensation comes from the settlement or judgment.
Closing
T-Mobile's litigation footprint in 2026 is substantial and actively evolving on three separate fronts. The 2021 breach settlement is distributing funds. The 2023 breach cases are building toward what could be a second significant resolution. The throttling class actions are reaching a procedural inflection point that will determine who can sue and on what basis.
Claimants with documented exposure from either breach, or with a record of throttling complaints against an "unlimited" plan, are in a position where the specific facts of their situation determine recovery potential. That is precisely the analysis a consumer protection or data privacy attorney performs in an initial consultation.
If the facts of your situation match any of the three tracks described in this article, an attorney who handles class action and data privacy cases is the appropriate next contact.
