Chapel Hill Presbyterian Church Data Breach Investigation
Chapel Hill Presbyterian Church has reported a data security incident in a filing with the Maine Attorney General. The public filing says the event involved an external system breach and that written notices were sent in March 2026. If you received a notice, review it carefully, enroll in any offered protection, and monitor your accounts and credit. You can also fill out the form on this page to contact Strauss Borrelli PLLC and learn whether you may qualify for a claim.
Chapel Hill Presbyterian Church is a nonprofit organization in Gig Harbor, Washington. Public regulatory records identify it as the entity involved in the reported incident and list a Gig Harbor address. If you received a notice connected to this matter, the summary below explains what the public filing says and practical steps to consider.
Key Facts at a Glance
- Entity: Chapel Hill Presbyterian Church, a nonprofit based in Gig Harbor, Washington.
- Incident reported: An “external system breach (hacking),” according to a Maine Attorney General filing.
- Incident date listed: January 30, 2026.
- Discovery date listed: February 26, 2026.
- Consumer notice date listed: March 23, 2026, by written notice.
- Individuals reported affected: 1,000 in total, including 1 Maine resident.
- Information identified publicly: The public webpage identifies “name or other personal identifier” but does not clearly display the full set of additional data elements.
- Protection offered: The filing says 12 months of credit monitoring and identity protection services were offered.
What Happened?
According to the Maine Attorney General filing, the church reported an external system breach with an event date of January 30, 2026. The same filing says the issue was discovered on February 26, 2026, and that written notices to affected consumers were sent on March 23, 2026. The public regulatory page provides only limited narrative detail, so it does not fully explain the technical method used or the complete scope of information that may have been involved.
The filing also lists outside counsel as the reporting contact. If you need details about the notice you received, the public filing includes a contact phone number of (206) 552-5069.
What Information Was Exposed?
Based on the public Maine filing, the information that may have been involved is not described with complete specificity on the webpage. The page identifies “name or other personal identifier in combination with” other information, but the remaining categories are not clearly shown there. That means affected individuals should review any letter they received for the most accurate description of what may have been involved in their particular notice.
The filing also states that 12 months of credit monitoring and identity protection services were offered. Even when the exact data elements are not fully visible in a public posting, it is still wise to take the notice seriously and use any protection offered before enrollment deadlines expire.
What Should You Do Next?
- Read your notice carefully and keep a copy. Your letter may contain details that are not visible on the public regulatory webpage, including the categories of information that may have been involved and any enrollment deadlines.
- Enroll in the offered protection. The filing says 12 months of credit monitoring and identity protection services were made available, and using them can help you spot problems early.
- Monitor your financial accounts and credit reports. Look for unfamiliar charges, new accounts, address changes, or other suspicious activity.
- Consider a fraud alert or security freeze. These tools can make it harder for someone to open new credit in your name if your information is misused.
- Update passwords if appropriate. If you reused passwords on accounts connected to the church or related services, change them and enable multi-factor authentication where available.
- Document any problems and ask questions. Save letters, screenshots, and records of suspicious activity. If you want to understand whether you may qualify for a claim, fill out the form on this page to contact Strauss Borrelli PLLC.
Your Legal Rights
People affected by a reported data incident may have rights under state data-breach notification laws and consumer-protection laws, depending on the facts. Those rights can include receiving notice, learning what categories of information were involved when that information is known, and obtaining any mitigation services the organization offered.
If the incident leads to fraud, identity-theft concerns, out-of-pocket costs, or significant time spent addressing account security issues, you may also want to speak with a lawyer about possible legal options. An attorney can evaluate the notice language, the timing of the disclosure, and whether the safeguards described publicly appear to have been reasonable. This article is general information only and is not individualized legal advice.
Why Hire Strauss Borrelli PLLC?
Strauss Borrelli PLLC represents individuals in data breach and privacy matters and investigates whether organizations used reasonable safeguards and provided appropriate notice after a reported incident. Our team reviews regulatory filings, notice letters, and the real-world impact on affected people, then explains potential next steps in plain English.
If you received a notice related to this reported incident, our firm can help you understand the public facts, the practical risks, and whether further legal review makes sense. If you want to speak with our team, you can use the form on this page to reach Strauss Borrelli PLLC.
If you received a breach notification letter from Chapel Hill Presbyterian Church:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
