Skip to main content
Skip to navigation

Risk Management

Blackbaud settles with states for $49.5M over 2020 data breach

By Jeff Dale2023-10-16T21:16:00

Software company Blackbaud agreed to pay $49.5 million in a multistate settlement addressing charges related to a 2020 cyberattack that exposed the personal data of approximately 13,000 consumers.

As part of the agreement including 49 states and the District of Columbia, Indiana will receive the largest share at $3.6 million, Indiana Attorney General Todd Rokita announced in a press release earlier this month. A settlement with the state of California is still pending, according to a public filing.

The settlement resolves allegations Blackbaud violated state consumer protection and breach notification laws and the Health Insurance Portability and Accountability Act by failing to implement reasonable data security and provide its customers with timely, complete, or accurate information regarding the breach.

THIS IS MEMBERS-ONLY CONTENT

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

News Brief
Blackbaud avoids fine in FTC deal requiring data deletion

2024-02-02T19:01:00Z By Jeff Dale

Software company Blackbaud will be required to delete unnecessary data and boost cybersecurity as part of a proposed settlement with the Federal Trade Commission stemming from a 2020 data breach.
Premium
Risk models show finance, real estate most likely to face costly cyber events

2023-10-19T20:59:00Z By Adrianne Appel

The finance and real estate industries are at higher risk of experiencing a high-cost material cybersecurity incident, compared to other sectors, according to new research from risk modeling firm Kovrr based off data from U.S. Fortune 1,000 companies.
News Brief
FCA fines Equifax’s U.K. unit $13.3M over 2017 data breach

2023-10-13T18:57:00Z By Jeff Dale

The Financial Conduct Authority fined Equifax’s U.K. unit more than £11 million (U.S. $13.3 million) regarding the company’s 2017 data breach that affected approximately 13.8 million U.K. consumers.

More from Risk Management

Article
Compliance should protect firms from AI-washing investigations and insurance claims

2025-11-05T20:28:00Z By Ruth Prickett

Insurance firms are warning that AI-washing could trigger a slew of cases against directors, and are adjusting their directors’ and officers’ liability premiums accordingly. With regulators cracking down on AI-washing – overstating the extent to which an organization is an AI business, or the value of its AI use to ...
News Brief
AI hallucinations in Deloitte Australia report highlight important role for compliance

2025-10-24T18:57:00Z By Ruth Prickett

“Hallucinatory” citations and errors in an AI-assisted report produced by Deloitte for the Australian government should be a wake-up call for compliance officers about the risks of placing too much trust in AI.
Article
How food and beverage companies adjust to the throes of tariff woes

2025-10-09T18:11:00Z By Jaclyn Jaeger

On-again-off-again tariffs, a down economy, and a long list of global supply chain disruptions are challenging U.S. food and beverage companies to adjust their supply chain operations in a variety of ways.