Strauss Borrelli PLLC, a leading data breach law firm, is investigating Bath Fitter Distributing, Inc. (“Bath Fitter”) regarding its recent data breach. The Bath Fitter data breach involved sensitive personal information belonging to an undetermined number of individuals.
ABOUT BATH FITTER DISTRIBUTING, INC.:
Bath Fitter is an acrylic bathtub, shower enclosure and tub-to-shower conversion company based in Canada.2 Founded in 1984, Bath Fitter offers renovations and replacements for baths and showers, in addition to a range of bathroom wall paneling, wainscoting, faucets, doors and shower rods, shelves, and more. Additionally, Bath Fitter provides services to hotels and hospitality companies, housing authorities, senior living facilities, and student housing. Headquartered in Quebec, Canada, Bath Fitter has over 200 retail locations in the United States and Canada and employs over 1,000 individuals.
WHAT HAPPENED?
Recently, Bath Fitter reported to the Attorney General of New Hampshire that it had experienced a data breach in which sensitive personal identifiable information in its care may have been compromised. According to the breach notice, Bath Fitter recently became aware that a threat actor impersonated an IT support technician and gained access to its network.1 As a result, Bath Fitter launched an investigation to determine the nature of the incident.
Through its investigation, Bath Fitter confirmed that sensitive personal information in its systems belonging to current or former employees may have been viewed and obtained by an unauthorized third party between December 4 and December 5, 2024. As a result, Bath Fitter began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. The exact type of personal information potentially exposed has not been made publicly available by Bath Fitter. However, according to state reporting guidelines, “personal information” can include the following types of information:
- Name
- Social Security number
- Driver’s license number or other government identification number
- Account number, credit or debit card number, in combination with any required security code, access code, or password that would permit access to an individual’s financial account
On December 26, 2024, Bath Fitter sent an initial email notice to all current employees. Additionally, on April 17, 2025, Bath Fitter began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to New Hampshire residents, Bath Fitter is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the form breach notification letters that Bath Fitter filed with the Attorney General of New Hampshire is below.
If you received a breach notification letter from Bath Fitter Distributing, Inc.:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
