Eventbrite is facing a class-action lawsuit in the wake of a highly publicized hack of the company’s Ticketfly subsidiary that crippled dozens of major concert promoters and venues for days and compromised the data of 27 million users.
In a class action lawsuit brought against Eventbrite in Chicago, attorneys for plaintiff Shanice Kloss accused the company failing to properly protect user’s personal information, breach of contract, and negligence.
Kloss alleged that Ticketfly failed to “implement reasonable data privacy and cybersecurity measures to secure” user data, and of failing to notify users that their personal information had been “disclosed to nefarious hackers within a reasonable period of time.”
The case stems from a high profile data compromise that knocked Ticketfly offline for the better part of a week in late May 2018 and exposed personal information including names, addresses, email addresses and phone numbers of an estimated 27 million users, according to Ticketfly.
Through the suit, the plaintiff is seeking statutory and compensatory damages, for Eventbrite to provide fraud monitoring and mitigation services, and the implementation of “commercially reasonable” security measures to prevent future data intrusions.
Eventbrite acquired Ticketfly from Pandora in 2017 for a reported $200 million.
The company did not respond to a request for comment.