Strauss Borrelli PLLC, a leading data breach law firm, is investigating Pennsylvania State Education Association (“PESA”) regarding its recent data breach. The PESA data breach involved sensitive personal information and protected health information belonging to over 517,000 individuals.
ABOUT PENNSYLVANIA STATE EDUCATION ASSOCIATION:
PESA is an education administration and professional organization based in Pennsylvania. Founded in 1852, PESA represents the labor, policy, and professional interests of 178,000 public school teachers and education support professionals, staff in state higher education institutions, nurses in health care facilities, retired educators, and college students preparing to become teachers in Pennsylvania.3 Today, PESA bargains compensation and benefits for members, protects their rights, and advocates for their professions.3 Headquartered in Harrisburg, Pennsylvania, PESA has twelve additional locations in the United States and employs over 200 individuals.
WHAT HAPPENED?
Recently, PESA announced that the sensitive personal identifiable information and protected health information in its care may have been accessed and acquired. According to the breach notice, PESA learned that it had experienced a security incident that impacted its network environment.1 As a result, PESA launched an investigation to determine the nature of the incident.
Through its investigation, PESA confirmed that sensitive personal information in its systems may have been viewed and obtained on or around July 6, 2024. As a result, PESA began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Date of birth
- Driver’s license or state ID number
- Passport number
- Taxpayer ID number
- Username and password
- Account number
- Account PIN
- Security code
- Password and routing number
- Payment card number
- Payment card PIN and expiration date
- Medical information
- Health insurance information
As a result of the data breach, PESA posted a notice of the incident on its website. Additionally, on March 17, 2025, PESA began sending breach notification letters to impacted individuals. Based on the website breach notice, PESA is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the form breach notification that PESA posted to its website is below.
If you received a breach notification letter from Pennsylvania State Education Association:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
