Last December, a security breach at Target resulted in the theft of personal records of some 110 million shoppers just after Black Friday. Information from some 40 million credit cards was collected from the company by cyberthieves.
As a result, lawsuits were filed in multiple states against the company. Those have now been consolidated in the state of Minnesota, where Target is headquartered.
In the transfer order, a U.S. Judicial Panel on Multidistrict Litigation found that all parties agreed that the centralization was warranted, but were unable to agree on the proper jurisdiction. But the panel found that the actions “involve common questions of fact, and that centralization in the District of Minnesota will serve the convenience of the parties and witnesses and promote the just and efficient conduct of this litigation. These actions share factual questions arising from a data security breach at stores owned and operated by Target between November 27, 2013, and December 15, 2013.
“Centralization will eliminate duplicative discovery; prevent inconsistent pretrial rulings, including with respect to class certification; and conserve the resources of the parties, their counsel, and the judiciary.
“We are persuaded that the most appropriate location for this litigation is the District of Minnesota,” the panel wrote. “Target is headquartered in that district, where 25 actions and potential tag-along actions are pending. All actions in the district are pending before Judge Paul A. Magnuson, a jurist with extensive experience in multidistrict litigation. Moreover, the District of Minnesota is easily accessible and relatively centrally located for the parties to this litigation, which is nationwide in scope.”