Home Depot on Monday fired back against allegations that it sentout misleading notices to potential class members in litigationover massive customer data breach.

The company claimed that lawyers for the financial institutionssuing the Atlanta-based home improvement chain have made"significant factual misstatements and misrepresentations" aboutHome Depot's role in the communications.

"Home Depot did not send or authorize and was not even aware of"notices announcing a settlement with MasterCard International Inc.that were sent to financial institutions that are either plaintiffsor potential plaintiffs in the multidistrict litigation, wrotelawyers at Atlanta's Alston & Bird defending Home Depot. Theyasked U.S. District Chief Judge Thomas Thrash Jr. to disregard aNov. 30 motion by the financial institutions for what Home Depot'slawyers claim is a "Draconian order" that would limit how HomeDepot communicates with financial institutions and ordersignificant disclosures about the apparent settlement.

Home Depot lawyers also contended that the financialinstitutions' motion was "replete with factual inaccuracies" andthat the plaintiff banks and credit unions "don't purport to haveactual support for the allegations that Home Depot was responsiblein any way" for the settlement notices, which were sent out overthe Thanksgiving holiday. Home Depot's motion did not addresswhether it has reached a settlement with MasterCard. But Home Depotspokesman Steve Holmes confirmed that the home improvement chainhas reached "a tentative settlement" with MasterCard that he saysis contingent on its acceptance by a certain number of thefinancial institutions.

Earlier filing

In the Nov. 30 motion, the financial institutions' lawyersclaimed that, without their knowledge, agents of Home Depot sent"highly misleading and coercive communications" offering anapparent settlement both to their clients, who are parties in thelitigation, as well as other potential plaintiffs. Those noticeswere sent while the judge had under consideration a request by HomeDepot that would allow the chain's lawyers or other representativesto communicate directly with potential class members without priorscreening of those communiques either by plaintiffs' lawyers or bythe court.

The notices announced that Home Depot and MasterCard had reacheda settlement in the data security breach litigation but providedlittle detail about the settlement terms. The notices, copies ofwhich are included in the court files, gave financial institutionseither until Dec. 2 or Dec. 7 to participate in the announcedsettlement. Some notices said that a failure to act within thespecified time limit would result in an automatic enrollment in thesettlement and a release of all claims associated with financialdamages incurred by the security breach.

Last week, the banks' lawyers demanded that Home Depot "explainits actions" and asked Thrash to limit further communications byHome Depot or its agents with any potential class members. Thelawyers also suggested they may also seek an injunction to bar HomeDepot and anyone acting in concert with the chain from implementingthe settlement or enforcing any releases that may have been securedas a result of the notices. They also asked for a copy of theMasterCard settlement and any other settlement agreements HomeDepot may have reached with potential class members, as well as allcommunications regarding the settlement and a list of all those towhom those communications were sent. On Monday, Thrash had not yetacted on the plaintiffs' motion.

Last year, a string of banks, credit unions and customers suedHome Depot, claiming that, collectively, they sustained millions ofdollars in damages as a result of the security breach, whichexposed the personal payment information of about 56 millioncustomers to computer hackers for at least five months.

Related: Home Depot settlement riles lawyers for data breachplaintiffs

Originally published on Law.com. All rights reserved. Thismaterial may not be published, broadcast, rewritten, orredistributed.

______________

How can you transform your risk management preparednessand response strategy into a competitive advantage?

Introducing ALM's cyberSecure — Atwo-day event designed to provide the insights and connectionsnecessary to implement a preparedness and response strategy thatchanges the conversation from financial risk to competitiveadvantage. Learnmore about how this inaugural event can help youreduce risk and add business value.