Posted On May 16, 2023 Consumer Privacy & Data Breaches
May 16 – After verifying on May 12, 2023 that a security event affecting the company’s IT network resulted in an unauthorized person getting access to private customer data, Renewal by Andersen (Renewal) submitted a notification of data breach with the Office of the Maine Attorney General. According to the company’s report, the breach exposed the names, addresses, credit card numbers, bank account information, and Social Security numbers of the affected customers to an outside entity. Renewal started mailing data breach notification letters to all people affected by the issue when it was confirmed that consumer data was compromised.
Console & Associates, P.C.’s data breach lawyers are now looking into the Renewal by Andersen incident. We are giving free consultations to anybody who has received a breach notice from Renewal by Andersen and wants to learn more about the dangers of identity theft and what they can do to protect themselves, and what legal options there are for pursuing a lawsuit against the company for financial compensation.
Andersen Corporation is the parent company of Renewal by Andersen. Renewal, founded in 1995 and based in Austin, Texas, replaces windows; Andersen Corporation is headquartered in Bayport, Minnesota. More than 13,000 people are employed by Andersen Corp., and the company earns around $3 billion a year in sales.
Renewal was notified on January 19, 2023, of a possible security issue, as stated in a filing with the Office of the Maine Attorney General. In response, Renewal spoke with third-party cybersecurity experts and initiated an investigation.
According to Renewal’s findings, the company’s computer system was hacked between January 2018 and January 19, 2023, and that it had been hacked earlier in January 2023. In some of the files that were compromised, sensitive information about customers was available.
As soon as Renewal by Andersen learned that private customer information had fallen into the wrong hands, the company launched a thorough investigation of the compromised files to ascertain what data had been exposed and who had been affected. This procedure was completed on April 17 of 2023. Information such as names, addresses, phone numbers, email addresses, credit card numbers, bank account numbers, and even Social Security numbers may have been compromised, though the information may vary by individual.
Data breach notifications were delivered to anyone whose information was exposed by Renewal by Andersen on May 12, 2023.
If Renewal sends you a notification of a data breach, it signifies that the incident may have exposed your personal information. Identity theft is only one of the many possible consequences of hackers gaining access to your personal data. Sometimes it’s tough to track down the culprits behind a data breach. There may be more than one party accountable for the data breach, regardless of whether the hackers are identified. Even if they were the ones who leaked the information, victims in the United States may be able to sue the corporation that suffered a data breach and recover damages from the firm.
Renewal and other firms like it may be victims of the assault, but they also have the burden of protecting their consumers’ private data. According to state and federal rules, businesses have a duty to use reasonable care while handling consumers’ personal data or risk being found negligent.
Companies in the United States have a duty to protect the privacy of their customers in light of recent data breach legislation. They might be held financially accountable in the event of a breach whereby sensitive information was accessed by unauthorized individuals.
The consumer privacy lawyers at Console & Associates, P.C. help customers affected by data and security breaches pursue legal solutions by offering free consultations. By explaining your rights in clear, concise terms, we help you make an informed decision about your next steps. If you are a victim of the Renewal by Andersen data breach, Console & Associates, P.C. will investigate at no charge to you and offer advice on how to proceed. If you decide to pursue a case, rest assured that we don’t get paid unless you do. If your claim is successful, legal fees are either paid out of the funds recovered or by the defendant. If your claim is not successful, you pay nothing.
Below is a portion of the letter sent to affected individuals:
Renewal by Andersen LLC (“Renewal”) is writing to notify you of a recent event that may impact the privacy of some of your personal information. While we are unaware of any attempted or actual misuse of your personal information, we are providing you with information about the event, our response, and steps you may take to protect against any misuse of your personal information, should you choose to do so.
What Happened? On January 19, 2023, Renewal was notified of a suspected data security event involving one of its systems. Upon notification, Renewal, with the assistance of third-party cybersecurity forensics experts, launched an investigation into the nature and scope of the event, including remediating any issues with the impacted system. The investigation determined that one of its systems was unsecured between January 2018 and January 19, 2023, and that there was unauthorized access to that system earlier in January 2023. Because we are unable to rule out unauthorized access to, or taking of, personal information stored within the system, Renewal is taking steps to provide notice of this event to certain individuals whose information was stored within the system at the time of the event. On April 17, 2023, we determined your personal information may have been impacted by this event. To date, there has been no indication of any misuse of the potentially impacted personal information and we are notifying you out of an abundance of caution.
What Information was Involved? Our investigation determined that some of the following types of your personal information were present in the system at the time of the event described above: name, address, Social Security number, banking account and routing number, driver’s license number, and credit card number.
What We Are Doing. Protecting personal information in our care is one of our top priorities. We have security measures in place to protect the security of information in our care, including security policies and procedures, updated security configurations, advanced controls, and preventative scans. Upon learning of this event, we promptly initiated remediation efforts to review and confirm the security of our system. We are now in the process of notifying state regulators of this event, as necessary. Although we are unaware of any attempted or actual misuse of your personal information as a result of the event, Renewal is offering you access to twenty-four (24) months of complimentary credit monitoring services through IDX.
What You Can Do. Please review the enclosed “Steps You Can Take to Help Protect Your Personal Information,” which provides information on what you can do to better safeguard against possible misuse of your personal information.
For More Information. If you have additional questions or concerns that are not addressed in this notice, please call our toll-free dedicated assistance line at 1-888-567-0811. This toll-free line is available Monday through Friday, 9 am to 9 pm Eastern Time.