North Georgia Christian Academy: SSNs & PHI Exposed

Published

November 24, 2025

Updated

November 24, 2025

North Georgia Christian Academy

Types of INFORMATION affected

Names
Social Security Numbers
Dates of Birth
Addresses
Government IDs
Medical Info
Financial Info

On April 29, 2025, North Georgia Christian Academy, a private Christian school in Ellijay, Georgia, experienced a significant data breach involving ransomware. The compromised information includes both personally identifiable information (PII) and protected health information (PHI).

The breach was discovered on Oct. 31, 2025, after a thorough investigation by external cybersecurity professionals. The investigation determined that an unauthorized actor accessed its network. The SAFEPAY ransomware group claimed responsibility for the attack, stating on a dark web posting dated May 17, 2025, that they had obtained 28 GB of the academy’s data.

The data exposed consists of full names in combination with date of birth, Social Security number, driver’s license number, medical treatment procedure information, clinical information, medical diagnosis information, treatment location and doctor name.

Not every data element was impacted for every individual, but the breadth of the exposed information is significant as it puts those impacted at risk of identity theft and medical fraud. On Nov. 18, 2025, the academy mailed notices to impacted individuals. North Georgia Christian Academy has also posted a notice of data security incident on its website.

North Georgia Christian Academy's response

Upon discovering the security incident, North Georgia Christian Academy immediately launched an investigation and engaged external cybersecurity experts to assess the scope and impact. To assist those affected, North Georgia Christian Academy is offering complimentary credit monitoring services to individuals whose Social Security numbers were involved in the breach.

If you receive notification from North Georgia Christian Academy about this breach, you may want to:

Sign up for the free identity theft protection services, if offered by North Georgia Christian Academy.
Monitor your credit reports and financial accounts for any unusual activity.
Be alert for phishing emails or phone calls that may use your exposed information.
Consider placing a fraud alert or credit freeze with major credit bureaus.

Individuals with questions or who need additional information can contact the dedicated response line at 706-635-6422, available Monday through Friday from 8 a.m. to 3:30 p.m. ET.