Strauss Borrelli PLLC, a leading data breach law firm, is investigating Southern Graphics Inc., which does business as SGS & Co. (“SGS”) regarding its recent data breach. The SGS data breach involved sensitive personal information and protected health information belonging to over 31,000 individuals.
ABOUT SOUTHERN GRAPHICS INC.:
SGS is a brand consulting agency based in Kentucky. For its clients, SGS provides services in brand strategy, marketing campaigns, AI automation solutions, audience analytics and insights.2 SGS has partnered with a variety of well-known brands, including Coca-Cola, CVS Health, Colgate, Best Buy, Lego, Starbucks, Target, Nestle, and more. 2 Headquartered in Louisville, Kentucky, SGS employs nearly 5,000 individuals across more than 30 countries.3
WHAT HAPPENED?
Recently, SGS reported to the Attorney General of Maine that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice, on December 2, 2024, SGS learned of a cybersecurity incident involving unauthorized access to its IT systems.1 As a result, SGS launched an investigation to determine the nature of the incident.
Through its investigation, SGS confirmed that sensitive personal information of SGS may have been accessed and acquired by an unauthorized third party on November 18, 2024. As a result, SGS began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. In late July, 2025, SGS completed this review. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Date of birth
- Contact information (such as phone numbers, email and postal addresses)
- Financial account numbers
- Passport number
- Driver’s license number
- Taxpayer ID numbers
- Medical information
- Health insurance information
- Demographic information
As a result of the breach, SGS has begun mailing data breach notification letters to impacted individuals. Based on the breach notice sent to Maine residents, SGS is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services.1 A link to the breach notice that SGS filed with the Attorney General of Maine is below.
If you received a breach notification letter from Southern Graphics Inc.:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
