California FAIR Plan Association Data Breach

The California FAIR Plan Association (“CFPA”) recently reported a data breach that exposed personal information of certain individuals. If you were affected, you may be entitled to compensation through a class action lawsuit.

California FAIR Plan Association’s Data Breach Investigation

On December 12, 2025, CFPA became aware of a cybersecurity incident in which certain personal information was inadvertently disclosed to an unauthorized third party. Upon discovery, CFPA launched an immediate investigation and took steps to contain the issue. The investigation confirmed that only individual broker information was affected, and the personal data of policyholders was not impacted—except in cases where the broker was also a policyholder.

However, upon further investigation and data analysis, CFPA determined that the data breach involved the personal information of individuals whose names, addresses, and Social Security numbers were disclosed. As of January 20, 2026, CFPA completed the review of the impacted data and has begun notifying individuals affected by the incident.

When Did This Breach Occur?

The breach was discovered on December 12, 2025. The data was disclosed to an unknown third party on the same day. CFPA took immediate action to contain the breach, and the investigation and notification process continued into early 2026.

What Information Was Breached?

The breach involved the following personal information:

• Full name

• Address

• Social Security number

This sensitive information was disclosed to an unauthorized third party. Although the breach did not impact the personal information of policyholders (except for brokers who are also policyholders), the exposure of such data could potentially lead to identity theft or fraud.

What You Can Do

If your personal information was affected by the CFPA data breach, here are the steps you should take to protect yourself:

1. Enroll in Complimentary Credit Monitoring and Identity Restoration Services – CFPA is offering 24 months of free credit monitoring and identity restoration services through their preferred third-party vendor, IDX. These services will help detect potential misuse of your personal information and assist with identity theft restoration.

2. Monitor Your Financial Accounts – Regularly check your bank accounts, credit card statements, and credit reports for any signs of fraudulent activity. If you notice any unusual transactions, immediately report them to your financial institution.

3. Place a Fraud Alert or Credit Freeze – You can place a fraud alert on your credit file, which will notify creditors to verify your identity before granting credit in your name. Additionally, consider placing a credit freeze, which restricts access to your credit report and prevents new accounts from being opened without your permission.

4. Request a Free Credit Report – You are entitled to one free credit report from each of the three major credit bureaus every year. Use this to monitor your credit and look for signs of unauthorized activity.

5. Stay Vigilant Against Identity Theft – Be cautious of any suspicious emails, calls, or messages requesting your personal information. Always verify the source before sharing any sensitive data.

By following these steps, you can help protect your personal information and reduce the risk of identity theft or financial fraud.

File a Data Breach Lawsuit Against California FAIR Plan Association

If your personal information was exposed in the CFPA data breach, you may be eligible to join a class action lawsuit. A class action lawsuit could provide compensation for damages such as privacy violations, potential financial harm, and emotional distress caused by the breach.

If you received a notification or believe your information was compromised, don’t wait. Contact us at Class Action U for a free consultation. We can connect you with experienced attorneys who specialize in data breach cases and guide you through the legal process.