Strauss Borrelli PLLC, a leading data breach law firm, is investigating LGAA, LLC regarding its recent data breach. The LGAA data breach involved sensitive personal information belonging to an undetermined number of individuals.
ABOUT LGAA, LLC:
LGAA is a member of Leavitt Group Agency Association based in Utah. Today, LGAA provides a variety of services to its member agencies, such as automation, training, payroll, accounting, and website services.4 In addition, LGAA owns facilities to assist member agencies in placing insurance coverage on behalf of clients.4 Headquartered in Cedar City, Utah, Leavitt Group has over 280 locations across 28 states and employs over 1,000 individuals.
WHAT HAPPENED?
Recently, LGAA reported to the Attorney General of California that it had experienced a data breach in which sensitive personal identifiable information in its care may have been compromised. According to the breach notice, on February 20, 2025, LGAA’s security tools identified unusual activity on a portion of its computer network that was used for data migrations.1 As a result, LGAA launched an investigation to determine the nature of the incident.
Through its investigation, LGAA confirmed that sensitive personal information and protected health information in its network may have been accessed and copied by an unauthorized third party during the breach. As a result, LGAA began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Driver’s license information
- Financial account information
- Credit and/or debit card information
On November 7, 2025, LGAA began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to California residents, LGAA is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the breach notification letters that LGAA filed with the Attorney General of California is below.
If you received a breach notification letter from LGAA, LLC:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
