Strauss Borrelli PLLC, a leading data breach law firm, is investigating PeopleGuru Holdings, Inc. (“PeopleGuru”) regarding its recent data breach. The PeopleGuru data breach involved sensitive personal information and protected health information belonging to an undetermined number of individuals.
ABOUT PEOPLEGURU HOLDINGS, INC.:
PeopleGuru is a human capital management company based in Florida. Founded in 2017, PeopleGuru provides a variety of payroll and HR services to businesses, including automated payroll and tax filing, core HR/employee self-service, scheduling, time and labor, reporting ana analytics, benefits administration, paperless onboarding, talent acquisition and management, and compliance.2 Headquartered in Tampa, Florida, PeopleGuru employs over 50 individuals.
WHAT HAPPENED?
Recently, PeopleGuru reported to the Attorney General of California that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice, on July 9, 2025, PeopleGuru became aware of a cyber security event in which an unauthorized third party gained access to certain systems within its network.1 As a result, PeopleGuru launched an investigation to determine the nature of the incident.
Through its investigation, PeopleGuru confirmed that sensitive personal information in its systems may have been accessed and acquired by an unauthorized third party between July 6 and July 9, 2025. As a result, PeopleGuru began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Date of birth
- Driver’s license number
- Passport number
- Financial account number
- Medical information
- Health insurance information
On October 16, 2025, PeopleGuru began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to California residents, PeopleGuru is providing affected individuals with a list of the specific types of sensitive information impacted and 12 months of complimentary credit monitoring services. A link to the breach notification letters that PeopleGuru filed with the Attorney General of California is below.
If you received a breach notification letter from PeopleGuru Holdings, Inc.:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
