Strauss Borrelli PLLC, a leading data breach law firm, is investigating Solaray LLC, which does business as Strategic Retail Partners (“SRP”), regarding its recent data breach. The SRP data breach may have involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.
ABOUT SOLARAY LLC D/B/A STRATEGIC RETAIL PARTNERS:
SRP is a retail merchandising company based in Colorado. Founded originally in 1969 as Solaray, which merged with PUGS in 2014 to form SRP Companies, SRP currently provides in-store merchandising solutions to retail partners, including a portfolio of retail products and store distribution, as well as merchandising representatives that develop customized product assortments for retail business.2,3,4 Product brands offered by SRP includes Solaray, Pugs, AES, Global Eyewear, Cloudz, Celltronix, Norlite, Fiesta, MC Sweets, and more.3 Headquartered in Castle Rock, Colorado, SRP employs over 1,000 individuals and manages 7 regional centers.2,3
WHAT HAPPENED?
Recently, SRP reported to the Attorney General of Maine that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice, on February 6, 2025, SRP became aware of suspicious activity on its computer network.1 As a result, SRP launched an investigation to determine the nature of the incident.
Through its investigation, SRP confirmed that the sensitive personal information and protected health information in its network may have been accessed and/or acquired by an unauthorized third party between February 3 and February 6, 2025.1 As a result, SRP began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Driver’s license or state identification number
- Passport number
- Financial account information
- Medical information
- Health insurance information
- US alien registration number
On or about October 8, 2025, SRP began mailing data breach notification letters to impacted individuals. Based on the breach notice being sent to Maine residents, SRP is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services.1 A link to the letters that SRP filed with the Attorney General of Maine is below.
If you received a breach notification letter from Solaray LLC d/b/a Strategic Retail Partners:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.