Basin Harbor Resort Data Breach Investigation
Beach Properties d/b/a Basin Harbor Resort has reported a data incident, according to a filing with the Maine Attorney General. The filing indicates written notices were sent on April 20, 2026, and that the information involved may have included names and Social Security numbers. If you received a notice, it is important to review the offer of credit and identity monitoring and watch for signs of misuse. You can also fill out the form on this page to find out whether you may qualify for a claim.
Beach Properties d/b/a Basin Harbor Resort is a hospitality business based in Vergennes, Vermont. According to a state regulatory filing, the company reported a cybersecurity incident involving its network and later sent written notices to affected individuals.
Key Facts at a Glance
- Company: Beach Properties d/b/a Basin Harbor Resort
- Industry: Hospitality
- Location: Vergennes, Vermont
- Incident date: According to the filing, October 20, 2025
- Discovery date: The filing lists October 20, 2025
- Type of incident: External system breach described as hacking
- Information reported as involved: Name and Social Security number may have been involved
- People affected: 3,150 individuals, including 21 Maine residents, according to the filing
- Notice date: Written notices were reportedly sent on April 20, 2026
- Identity protection: 12 months of TransUnion credit and identity monitoring and fraud assistance were reportedly offered
What Happened?
According to the Maine Attorney General filing, Beach Properties d/b/a Basin Harbor Resort reported an external system breach affecting its network. The filing lists October 20, 2025 as both the date the event occurred and the date it was discovered. Written consumer notices were reportedly mailed on April 20, 2026, and the matter appeared on the Maine Attorney General’s public breach notice site on or about April 21, 2026. Publicly available details are limited, so affected readers should rely on the notice they received for any individual-specific information.
What Information Was Exposed?
The public filing indicates the information at issue may have included a person’s name together with a Social Security number. The filing does not appear to publicly describe every field of information that may have been involved or whether different individuals were affected in different ways. Because Social Security numbers can be misused for identity theft, tax fraud, or new-account fraud, it is wise to take the notice seriously even if you have not seen any immediate misuse.
What Should You Do Next?
- Read your notice carefully and keep a copy. Check what the letter says about the timing of the incident, the type of information involved, and any enrollment instructions.
- Enroll in the offered monitoring services promptly. The filing says TransUnion credit and identity monitoring and fraud assistance were offered for 12 months.
- Review your credit reports and account activity. Look for unfamiliar loans, accounts, address changes, tax issues, or other suspicious activity.
- Consider a fraud alert or credit freeze. These tools can make it harder for someone to open new credit in your name.
- Stay alert for scams. Be cautious with emails, calls, or texts that reference the incident and ask for personal or financial information.
- Learn about your legal options. If you received a notice and want to understand your rights, you can fill out the form on this page to see whether you may qualify for a claim.
Your Legal Rights
Your legal rights depend on the facts of the incident and the laws that apply to your situation. In many data incident matters, affected individuals may have the right to receive notice, use any offered identity protection services, and consult counsel about whether they may have claims if sensitive information was put at risk. If misuse occurs, you may also have rights to dispute fraudulent accounts or charges and to place fraud alerts or credit freezes with the major credit bureaus. Keep copies of the notice, records of unusual activity, and any out-of-pocket costs, because that documentation may be important later.
Why Hire Strauss Borrelli PLLC?
Strauss Borrelli PLLC focuses on data breach and privacy incidents and has experience investigating cyber events on behalf of consumers. Our team works to understand what was reported, what information may have been at issue, and what remedies may be available under the circumstances. If you received a notice related to Basin Harbor Resort, we can review the reported facts and explain next steps in plain English. To learn more, contact Strauss Borrelli PLLC or use the form provided on this page for a free case review.
If you received a breach notification letter from Basin Harbor Resort:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
