Your Social Security Number Is Gone. Saratoga Harness Racing Paid $50 to Say Sorry.

EvilCorporations.com • Myers et al. v. Saratoga Harness Racing, Inc. • 64 min read

What a Stolen Social Security Number Actually Feels Like

Let’s set aside the legal language for a moment and talk about what actually happened to nearly 21,000 people.

You went to a horse racing track. Maybe you placed a bet. Maybe you worked there. Either way, you handed over the most sensitive numbers attached to your identity because you had to, because that’s how the system works. You trusted that the company on the other end of that transaction was doing the bare minimum to keep those numbers safe.

They weren’t. And now a stranger, somewhere, has your Social Security number. That nine-digit string is the master key to your financial life. With it, someone can open credit cards in your name, file a fraudulent tax return and collect your refund, apply for government benefits as you, take out loans you’ll spend years fighting to dispute. The damage doesn’t announce itself immediately. It shows up six months later when you apply for an apartment and the landlord tells you your credit is destroyed. It shows up when the IRS says you already filed. It shows up when a debt collector calls about a card you never opened.

The settlement in this case gives you $50 to deal with all of that. Fifty dollars. The price of a nice dinner. The cost of two tanks of gas. That is the dollar figure Saratoga Harness Racing and the lawyers who settled this case decided was an appropriate acknowledgment of the permanent risk they created for nearly 21,000 human beings.

There is also a maximum $2,500 option, but to get it, you have to prove your losses with receipts, bank statements, and third-party documentation. You have to prove, under penalty of perjury, that the harm they caused you was real and documented. Your word alone is not enough. A sworn declaration is not enough. The burden of proof sits entirely on the person who was victimized.

And when this settlement is finalized, you lose the right to sue them again. Forever. For anything related to this breach. Even if you discover new harm years from now. Even if your child’s identity is compromised with the same data. The release language in this agreement is broad enough to swallow claims you haven’t even discovered yet. That is the trade Saratoga Harness Racing is offering: $50 now, in exchange for your permanent legal silence.

Meanwhile, the company does not have to admit it did anything wrong. The settlement agreement says so explicitly, in several different ways, across multiple paragraphs, as if repeating it enough times makes it feel less like a corporate escape hatch. They didn’t do anything wrong. They just want this to go away. And $50 a person is a very cheap way to make that happen.

Direct From the Court Documents: What They Actually Said

Every quote below is pulled verbatim from the settlement agreement filed with the Saratoga County Clerk on October 3, 2025. Nothing is paraphrased.

“Defendant determined that the Private Information of approximately 20,866 individuals was compromised, accessed, and/or exfiltrated by an unauthorized party during the Data Incident.”
Settlement Agreement, Section I, Paragraph 3

• This is Saratoga’s own forensic investigation conclusion. The company did the audit and confirmed the number themselves: 20,866 people had their data stolen.
• The word “exfiltrated” is key. It means the data was not just accessed; it was copied and taken out of the system. This was not a glitch. Someone left with your information.
• The phrase “and/or” is doing significant legal work here. The company is hedging on whether every victim’s data was confirmed stolen or merely accessible. For the people affected, that distinction is cold comfort.

“Cash Payment B – Alternate Cash means the $50 cash compensation that Settlement Class Members may elect under the Settlement.”
Settlement Agreement, Section II, Paragraph 15

• This is the baseline compensation offered to nearly 21,000 people whose most sensitive identifying information was stolen. Fifty dollars, no documentation required.
• This amount is the same regardless of whether your Social Security number, your driver’s license number, or both were taken. The severity of the data exposed has no bearing on the flat payment amount.

“As a material part of this Settlement, prior to Final Approval, Defendant will provide Class Counsel with a confidential security attestation regarding security enhancements Defendant implemented following the Data Incident and the estimated costs of such past and future measures.”
Settlement Agreement, Section IV, Paragraph 68

• The word “confidential” means the 20,866 people whose data was stolen will never be told what security failures caused the breach, or whether the fixes are adequate.
• The security attestation goes to class counsel only. The public, including the victims, has no access to it. You are expected to trust that your lawyers reviewed it and found it acceptable, but you cannot review it yourself.
• The settlement explicitly states that the costs of these security enhancements “shall be fully borne by Defendant.” This is framed as a benefit. In reality, it means Saratoga is simply doing what any responsible company should have done before the breach happened.

“Defendant does not in any way acknowledge, admit to, or concede any of the allegations made in the Complaint, and expressly disclaims and denies any fault or liability, or any charges of wrongdoing that have been or could have been asserted in the Complaint.”
Settlement Agreement, Section I, Paragraph 10

• This is standard corporate settlement language, but it is worth understanding what it means in practice: Saratoga pays out, but the public record reflects that they did nothing wrong.
• This language protects Saratoga from having this settlement used as evidence against them in any future lawsuit. They can be sued again for a different breach, and today’s settlement cannot be used to show a pattern of negligence.

“If a Settlement Class Member does not submit a Valid Claim, the Settlement Class Member will release his or her claims without receiving a Settlement Class Member Benefit.”
Settlement Agreement, Section IV, Paragraph 65

• This is the most punishing clause in the entire document. If you do nothing, you still lose your right to sue. You receive no money, no credit monitoring, and no legal recourse. You simply give Saratoga a free release of all claims.
• Combined with the placeholder deadlines in the court filing, this means victims who are slow to respond or who never received proper notice may forfeit their rights entirely without ever making a conscious choice to do so.

“Plaintiffs will move the Court for an order awarding reasonable attorneys’ fees and litigation costs of up to $250,000.00. Defendant will not oppose Plaintiffs’ request for attorneys’ fees and costs up to that amount.”
Settlement Agreement, Section IX, Paragraph 99

• The attorneys representing the class stand to receive up to $250,000 in fees. If every one of the 20,866 victims takes only the $50 flat payment, the total victim fund would be approximately $1,043,300. Attorney fees represent nearly 24% of that hypothetical total.
• Saratoga pre-agreed not to fight this fee request. That is a negotiated concession built into the settlement structure before a single victim files a claim.
• Class counsel also receives up to $12,500 in service awards for the five named plaintiffs, paid separately by Saratoga on top of all other costs.

Beyond the Courtroom: What This Breach Actually Costs Society

Public Health

Data breaches involving Social Security numbers and government ID numbers produce harms that extend well beyond immediate financial fraud. The documented exposure in this case affects 20,866 individuals across the United States.

• Social Security number theft is the foundation of medical identity theft. A stolen SSN can be used to bill Medicare or Medicaid for procedures under a victim’s identity, resulting in corrupted medical records that can endanger the victim when they later receive care, because their file now reflects procedures, diagnoses, and medications they never had.
• The psychological toll of identity theft is clinically documented. Victims report chronic anxiety, sleep disruption, and hypervigilance about financial statements that can persist for years after the initial theft. For the 20,866 people in this class, that ongoing threat is now a permanent feature of their lives.
• Driver’s license number theft enables the creation of fraudulent identification documents. These fake IDs can be used to evade law enforcement, pass background checks, or open financial accounts. Victims can find themselves facing criminal records attached to their identity for events they had no involvement in.
• The breach disproportionately endangers lower-income victims, who are less likely to have access to financial advisors, legal help, or the resources to continuously monitor their credit and dispute fraudulent accounts. The $50 settlement payment does not begin to cover the cost of a single consultation with an identity theft specialist.

Economic Inequality

The settlement structure itself creates a two-tiered justice system based on economic resources, where better-off victims are more likely to collect meaningful compensation while working-class victims are funneled toward the $50 floor.

• Cash Payment A, the up-to-$2,500 documented loss option, requires receipts, bank statements, invoices, and third-party records. People who are unbanked or who deal primarily in cash, who are less likely to have clean paper trails, are structurally excluded from this higher tier even if their harm was equal or greater.
• Victims who do not regularly monitor their credit, often lower-income individuals who cannot afford credit monitoring subscriptions, are less likely to have detected and documented fraud in the narrow window between November 2024 and the claims deadline. No documentation, no payout above $50.
• The $250,000 cap on attorney fees means class counsel is well-compensated regardless of how many victims successfully claim the higher payment tier. There is no structural incentive built into this settlement for attorneys to push for a higher flat-rate baseline.
• Saratoga, as a casino, hotel, and live racing track, generated revenue from the very customers and employees whose data it failed to protect. The company’s entertainment revenues are not disclosed in these filings, but it faces zero financial penalty beyond the settlement payouts it agreed to. There is no punitive element in this deal.
• The settlement releases all claims against not just Saratoga but against its entire corporate family: past, present, and future parents, subsidiaries, affiliates, officers, directors, agents, insurers, and reinsurers. The scope of that release far exceeds what a $50 payment could reasonably be considered compensation for.

What the Settlement Notice Says vs. What the Fine Print Actually Means

The postcard notice mailed to 20,866 victims contains accurate but strategically incomplete information. Here is what the notice emphasizes and what the full agreement reveals.

The Numbers That Tell the Real Story

Your Immediate Options and Who to Contact

If you are one of the 20,866 people whose data was taken, or if you are someone who cares about corporate accountability and data security, here is what you can do right now.

If You Are a Victim: Protect Your Rights Before the Deadlines Hit

• The claim deadlines in the court-filed documents were listed as placeholders at the time of filing. You must visit the settlement website, which will be announced at [REDACTED – Not finalized in source document], to get the exact dates. Every day you wait is a day closer to losing your eligibility for even the $50 payment.
• File a claim for Cash Payment B ($50) immediately if you have no documentation. You can always supplement with Cash Payment A documentation if you find receipts, bank statements, or credit report fees. Do not wait for perfect evidence before filing.
• If you want to opt out and preserve your right to sue Saratoga independently, your opt-out request must be personally signed, include your name, address, phone, and email, and must be postmarked before the opt-out deadline. Mail it to: Saratoga Data Incident Settlement, ATTN: Exclusion Request, c/o Settlement Administrator, Santa Ana, CA 92799-9958.
• If you want to object to the settlement terms as inadequate, you must file a formal written objection with the Saratoga County Court Clerk, send copies to class counsel and defense counsel, and comply with the detailed requirements in the settlement agreement. An objection does not prevent you from also filing a claim.
• Place a free credit freeze at all three bureaus immediately: Equifax, Experian, and TransUnion. A freeze is the single most effective tool available to prevent new credit accounts from being opened in your name. It costs nothing and can be lifted whenever you need to apply for credit.

Watchlist: Regulatory Bodies That Should Know About This

• Federal Trade Commission (FTC): The FTC enforces federal data security standards. You can file a complaint at ftc.gov/complaint if you believe your identity has been misused following this breach.
• New York Attorney General’s Office: New York State has strong data breach notification and security laws. The AG’s office has investigative authority over companies operating in New York that suffer data breaches affecting New York residents.
• Consumer Financial Protection Bureau (CFPB): If you experience fraudulent financial accounts or debt collection activity stemming from this breach, the CFPB accepts complaints at consumerfinance.gov/complaint.
• Social Security Administration (SSA): If your Social Security number was misused, report it to the SSA at ssa.gov/fraud. The SSA can flag your record and assist with resolving fraudulent benefit claims made in your name.
• IRS Identity Protection Unit: File IRS Form 14039 (Identity Theft Affidavit) to protect your tax records from fraudulent returns filed using your SSN. Do this proactively; do not wait for a problem to appear.

Mutual Aid and Grassroots Resistance

• Share this article with everyone you know who may have visited or worked at Saratoga Harness Racing. Many of the 20,866 victims may not have received notice or may not understand what they are agreeing to by doing nothing.
• Connect with local digital rights organizations in New York State. Groups focused on consumer privacy and data security can help you understand your rights and connect you with legal aid if you cannot afford an attorney to review your options.
• Contact your state legislators in New York about stronger data security liability laws. Right now, a company can suffer a breach affecting nearly 21,000 people, pay $50 per person, and walk away admitting nothing. That is the law as it currently stands. It can be changed.
• If you work in hospitality, gaming, or live entertainment, organize with your coworkers around data security as a workplace right. Your employer collects your SSN and ID information. You have a right to know how it is stored and what liability the company accepts if that data is compromised.
• Support advocacy organizations that push for opt-in data collection, mandatory encryption standards, and meaningful punitive damages in data breach cases. The $50 settlement exists precisely because the law allows it. Changing those laws requires sustained political pressure from people who are directly affected.