Louis Vuitton Data Breach Exposes PII of Clients

On July 2, 2025, Louis Vuitton North America, Inc. became aware of a significant cybersecurity incident that exposed sensitive client information. An investigation revealed that unauthorized party gained access to a database containing client data on June 7, 2025.

Exposed client information included names, contact information, addresses, dates of birth, passport numbers and in some cases, government ID numbers. Louis Vuitton North American began notifying clients affected by the data breach by mail on Aug. 22, 2025.

Louis Vuitton North America reported the cybersecurity incident to the California, Massachusetts, Vermont, Washington and Texas Attorney Generals' offices beginning on Aug. 22, 2025. Affected customers include 23,570 Texas residents, 17,615 in Washington and four in Massachusetts.

The company has not disclosed the total number of affected individuals across the United States, but the nature of the exposed data suggests the incident is serious.

Louis Vuitton North America's response

In response to the breach, Louis Vuitton North America, Inc. immediately launched an internal investigation with the support of cybersecurity experts. In addition to required state and federal disclosures, the company is offering impacted clients 24 free months of Experian IdentityWorks credit monitoring and identity theft protection services.

If you receive a data breach letter from Louis Vuitton North America, you may want to:

• Enroll in the free credit monitoring and identity theft protection services, offered by the company.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

More information about the company can be found on the Louis Vuitton website.