TrueFire Data Breach – TrueFire Submits “Notice of Data Event” to California Attorney General – Incident May Affect Certain Personal Information Provided While Making A Purchase at TrueFire.com

Kehoe Law Firm, P.C. is making consumers aware that TrueFire LLC (“TrueFire”) submitted a “Notice of Data Event” to the California Attorney General which disclosed “an incident that may affect certain personal information [one] provided while making a purchase at TrueFire.com.”

In the data event notice, TrueFire reported that “[o]n January 10, 2020, TrueFire discovered that an unauthorized person gained access to [TrueFire’s] computer system and, more specifically, to information that consumers had entered through the [TrueFire.com] Website.”  TrueFire also stated that “. . . it appears that the unauthorized person gained access to the [TrueFire.com] Website and could have accessed the data of consumers who made payment card purchases, while that data was being entered, between August 3, 2019 and January 14, 2020.”

Further, TrueFire reported “. . . that the information that was potentially subject to unauthorized access includes your name, address, payment card account number, card expiration data and security code.” [Emphasis added.]

Infosecurity-magazine.com reported (“Guitar Tuition Website Suffers Six-Month Data Breach“) that “[i]n their breach notification letter, TrueFire gave no reason as to why they waited until March 9 to inform users of the breach that was discovered on January 10. No mention of the data breach could be found on the TrueFire website at time of publication.”

Have You Been Impacted by A Data Breach?

If so, please either contact Kehoe Law Firm, P.C. Partner Michael Yarnoff, Esq., (215) 792-6676, Ext. 804, [email protected], complete the form on the right or send an e-mail to [email protected] for a free, no-obligation case evaluation of your facts to determine whether your privacy rights have been violated and whether there is a basis for a data privacy class action.

Examples of the type of relief sought by data privacy class actions, include, but are not limited to, reimbursement of identity theft losses and of out-of-pocket costs paid by data breach victims for protective measures such as credit monitoring services, credit reports, and credit freezes; compensation for time spent responding to the breach; imposition of credit monitoring services and identity theft insurance, paid for by the defendant company; and improvements to the defendant company’s data security systems.

Data privacy class actions are brought on a contingent-fee basis; thus, plaintiffs and the class members do not pay out-of-pocket attorney’s fees or litigation costs.  Subject to court approval, attorney’s fees and litigation costs are derived from the recovery obtained for the class.

Kehoe Law Firm, P.C.