Incident Notification: Emmi Roth USA Addresses Data Security Breach

Emmi Roth USA, Inc. ("Emmi Roth" or the "company") understands the importance of protecting personal data and retaining the trust of customers and employees. Unfortunately, Emmi Roth was the victim of a cyberattack, and certain sensitive personal data within the company's custody and control was compromised.

What Happened? On August 10, 2023, Emmi Roth discovered that a third party gained unauthorized access to their information technology environment. The company immediately deployed security measures to contain and mitigate this threat and retained an external incident response team to accelerate recovery efforts. Because of the substantial security controls implemented prior to this cybersecurity incident, Emmi Roth was able to contain the threat within a few hours and quickly return to a normal state of business operations. Emmi Roth proactively notified the Federal Bureau of Investigation (FBI) of this incident and are assisting with its investigation.

What Personal Data Was Impacted? As part of the internal investigation into this cyberattack, Emmi Roth identified that an unauthorized third party gained access to certain Emmi Roth files and records that contained sensitive personal data related to (i) current and former Emmi Roth employees and (ii) current and former employees of certain Emmi Roth affiliates and subsidiaries. Emmi Roth is in the process of sending current employees a detailed letter about this incident. If you previously worked for Emmi Roth or worked at any of the following Emmi Roth affiliates or subsidiaries during these timeframes, your sensitive personal data may have been impacted by this cybersecurity incident:

What You Can Do. Based on the measures that Emmi Roth has implemented and the actions taken, there is no indication that any sensitive personal data involved in this cybersecurity incident has been misused or will be misused in the future. Yet, out of an abundance of caution, Emmi Roth is providing complimentary credit monitoring and identity theft protection services to those individuals who may have been impacted by this cybersecurity incident.

• If you are a current employee of Emmi Roth or of the affiliates and subsidiaries referenced above and you were impacted by this incident, you will receive a separate notice in the mail from Emmi Roth that provides instructions on how you can enroll in these services.
• If you are a former employee of either (i) Emmi Roth or (ii) of the abovementioned Emmi Roth affiliates or subsidiaries in the timeframes listed above, please contact our call center (see below) to determine whether you are eligible to enroll in these services.

Suppliers and Customers. Emmi Roth does not retain sensitive personal data on our customers, clients, or suppliers, and therefore no such personal data was impacted in this incident.

For More Information. Emmi Roth has established a dedicated call center to answer questions you may have about this incident, which you can reach at 844-709-1704, Monday – Friday, 9:00 am to 9:00 pm (EST). More information is available at: www.emmiroth.com/datasecuritynotice.

/PRNewswire/ -- Sept. 8, 2023/

SOURCE Emmi Roth