LGBTQ Center OC Data Breach Investigation
According to a California regulatory filing, Gay & Lesbian Community Services Center of Orange County, Inc. reported a hacking-related data incident tied to late December 2025 activity. Public details remain limited because the linked notice is not currently accessible. The filing indicates highly sensitive personal and health-related information may have been involved. If you think this incident may affect you, fill out the form on this page to see whether Strauss Borrelli PLLC can evaluate your potential claim.
Gay & Lesbian Community Services Center of Orange County, Inc. is a California non-profit organization. Based on the public filing information available, it was listed in connection with a reported cybersecurity event affecting information stored on its network.
Key Facts at a Glance
- Organization: Gay & Lesbian Community Services Center of Orange County, Inc.
- Industry: Non-profit organization
- State listed: California
- Incident type: Reported as a Hacking/IT Incident
- Incident dates listed: December 25, 2025 and December 26, 2025
- Public listing date: June 5, 2026
- Affected individuals: Not publicly stated in the provided materials
- Notice date: Not publicly available in the provided materials
- Information that may have been involved: Name, Social Security number, date of birth, driver’s license number, financial account number, medical record number, passport number, health records, health insurance information, and biometric identifiers
What Happened?
Detailed information from the official notice is not publicly accessible at this time. The following summary is based on the available California regulatory listing and the structured filing data provided.
According to that listing, the event was categorized as a reported Hacking/IT Incident. The filing lists late-December 2025 dates for the underlying activity, but it does not publicly provide a discovery date, an affected-person count, or a readable narrative explaining how the incident occurred. Because the linked notice file could not be publicly accessed, important details remain unknown, including when the organization discovered the issue and what remedial steps were described to affected individuals.
What Information Was Exposed?
Based on the regulatory filing data, the information that may have been involved is highly sensitive. Reported categories include:
- Name
- Social Security number
- Date of birth
- Driver’s license number
- Financial account number
- Medical record number
- Passport number
- Health records
- Health insurance information
- Biometric identifiers
That does not necessarily mean every person had all of these data elements involved. With the detailed notice unavailable, the exact combination of information tied to any individual remains unclear.
What Should You Do Next?
- Save any notice or communication you received. Keep letters, emails, screenshots, and envelopes. These records may help you confirm what information was identified as involved and when notice was sent.
- Review your financial accounts and medical statements. Watch bank accounts, payment cards, insurance explanations of benefits, and medical provider statements for unfamiliar activity or services.
- Consider placing a fraud alert or credit freeze. If your Social Security number, date of birth, driver’s license number, or financial information may have been involved, a fraud alert or security freeze can help reduce the risk of new-account fraud.
- Check your credit reports. Look for accounts, inquiries, or address changes you do not recognize. You can request free reports through the official annual credit report site.
- Be cautious about scams. After a reported data incident, phishing emails, texts, and phone calls often increase. Do not click unfamiliar links or share personal information unless you independently verify the sender.
- Document any harm you experience. Keep records of out-of-pocket costs, time spent resolving identity issues, denied claims, or other problems that may be related to the incident.
- Ask about your legal options. If you received notice or believe your data may have been involved, you can contact Strauss Borrelli PLLC using the form provided on this page to see whether you may qualify for a claim.
Your Legal Rights
If your personal information was involved in a reported cybersecurity incident, you may have legal rights depending on the facts, the safeguards that were in place, and what harm occurred afterward. In some situations, affected individuals may seek more information about what happened, what data was implicated, what protection services are being offered, and whether the organization met its obligations under applicable law.
Potential claims can depend on many factors, including whether sensitive data was exposed, whether misuse has occurred, and whether notice was timely and complete. This page is not legal advice, but it is reasonable to speak with a lawyer if you are dealing with fraud, identity theft concerns, medical privacy issues, or ongoing uncertainty about what information may have been involved.
Why Hire Strauss Borrelli PLLC?
Strauss Borrelli PLLC represents individuals in data breach and privacy matters and investigates whether organizations used reasonable safeguards for sensitive information. Our team understands how reported cybersecurity incidents can create real stress, especially when Social Security numbers, health information, financial data, or biometric identifiers may be at issue.
We focus on clear communication, practical next steps, and careful case evaluation. If you received a notice connected to this reported incident, or if you are concerned your information may have been involved, Strauss Borrelli PLLC can review the available facts and explain the next steps in plain English.
If you received a breach notification letter from LGBTQ Center OC:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
