WEBSITE NOTICE – California
Notice to Individuals Regarding Privacy Incident Involving World Relief Corporation of National Association of Evangelicals
NOTICE OF DATA BREACH
At the World Relief Corporation of National Association of Evangelicals (“World Relief”), we are committed to protecting the confidentiality and security of the personal information we maintain. Regrettably, this notice is about an incident that involves information for some of our clients.
World Relief is a global non-profit organization that provides assistance and care to refugees.
We recently conducted an investigation into a phishing email incident involving some of our employee’s email accounts. Upon learning of the incident, we immediately took steps to secure the accounts, launched an internal investigation, and a cyber security firm was engaged to assist our investigation. The investigation determined that an unauthorized individual may have downloaded or viewed certain emails or attachments in the employee accounts between April 4, 2019 and May 21, 2019. On July 31, 2019, our investigation determined that personal information was contained in those emails or attachments for some of our clients.
What Information Was Involved?
The email accounts contained clients’ names and some or all of the following: Social Security Numbers, driver’s license numbers, financial account numbers, online account credentials, medical information, and health insurance numbers.
What We are Doing.
On September 19, 2019, we mailed letters to individuals for whom we had a physical address to explain the incident, measures we have taken, and steps they can take in response. We also established a dedicated call center to answer questions. For those individuals whose Social Security number or driver’s license number was contained in the emails and attachments, we are offering a complimentary credit monitoring and identity restoration service through Kroll. To further enhance our security procedures, we are implementing additional safeguards and technical security measures, and are providing additional training to our employees.
What You Can Do.
We encourage all individuals to remain vigilant by reviewing their account statements for any unauthorized activity.
For More Information.
If you believe you may have been affected by this incident and do not receive a letter by September 19, 2019, please call 1-833-943-1378, Monday through Friday, between 9 a.m. and 6:30 p.m. Eastern Time.
Additional Steps You Can Take
We remind you it is always advisable to be vigilant for incidents of fraud or identity theft by reviewing your account statements and free credit reports for any unauthorized activity. You may obtain a copy of your credit report, free of charge, once every 12 months from each of the three nationwide credit reporting companies. To order your annual free credit report, please visit www.annualcreditreport.com or call toll free at 1-877-322-8228. Contact information for the three nationwide credit reporting companies is as follows:
Experian, PO Box2002, Allen, TX75013, www.experian.com, 1-888-397-3742
TransUnion, PO Box2000, Chester, PA 19016, www.transunion.com, 1-800-916-8800
Equifax, PO Box740241, Atlanta, GA 30374, www.equifax.com, 1-800-685-1111
If you believe you are the victim of identity theft or have reason to believe your personal information has been misused, you should immediately contact the Federal Trade Commission and/or the Attorney General’s office in your state. You can obtain information from these sources about steps an individual can take to avoid identity theft as well as information about fraud alerts and security freezes. You should also contact your local law enforcement authorities and file a police report. Obtain a copy of the police report in case you are asked to provide copies to creditors to correct your records. Contact information for the Federal Trade Commission is as follows:
Federal Trade Commission, Consumer Response Center, 600 Pennsylvania Avenue NW, Washington, DC 20580, 1-877-IDTHEFT (438-4338), www.ftc.gov/idtheft