Restaurant Management Company Data Breach Affects 120,426

Restaurant Management Company of Wichita Inc., one of the largest Pizza Hut franchisees in the United States, has disclosed a data breach that affected approximately 120,426 individuals across the country, including 26 Maine residents.

The breach was reported to the Maine Attorney General on April 20, 2026. Written notifications to affected consumers are dated April 20, 2026.

What happened in the Restaurant Management Company data breach

On Oct. 13, 2025, Restaurant Management detected suspicious activity on its computer systems. The company took steps to secure its systems and brought in outside cybersecurity experts to assist with the investigation.

The investigation determined that an unauthorized third party had gained access to a portion of the company's computer systems. The unauthorized access began on Oct. 4, 2025, and continued through Oct. 13, 2025, a period of 10 days.

After identifying the files that were potentially affected during this period, the company hired a separate data-review firm to examine the contents of those files. The company received the results of that review on Feb. 12, 2026, approximately four months after the unauthorized access first occurred.

From that point, the company worked to determine exactly which individuals needed to be notified about the breach. The company stated that it is now in the process of reaching out to those individuals.

The specific types of personal information exposed in the breach varied from person to person. The company did not publicly release a comprehensive list of data types that applied to all affected individuals, but may include personal information such as names, dates of birth, addresses, financial account information and even Social Security numbers.

Restaurant Management Company's response to the breach

Restaurant Management Company hired third-party cybersecurity experts to investigate the breach and to take additional steps to strengthen the security of its systems.

The company is sending written notification letters to affected individuals, explaining which types of data were potentially exposed for that specific person and providing detailed guidance on additional steps recipients can take to help protect themselves.

The company is offering affected individuals a complimentary membership to Experian IdentityWorks, a credit monitoring and identity theft protection service. Affected individuals can sign up online by visiting the Experian IdentityWorks enrollment page and entering the unique activation code printed in their notification letter.

Those who prefer not to enroll online or who need assistance with the process can call Experian directly at 833-918-1109. Each letter includes a specific enrollment deadline, and the activation code will stop working after that date.

In addition, the company has set up a dedicated toll-free call center to help affected individuals with questions about the breach and the notification process. The call center number is 844-558-4513. It is staffed Monday through Friday from 8:00 a.m. to 8:00 p.m. Central Time, and representatives are available to provide assistance.

Steps to take if your information was exposed

• Check financial account statements for any unauthorized charges or unfamiliar transactions, and contact the relevant bank or credit card company right away if anything seems out of place.
• Place a fraud alert or security freeze on credit files by contacting Equifax (800-685-1111), Experian (888-397-3742) or TransUnion (888-909-8872) to help prevent new accounts from being opened without proper verification.
• Request free credit reports at AnnualCreditReport.com, where reports are available once per week at no cost, and review them carefully for any accounts or credit inquiries that seem unfamiliar.
• Watch for phishing attempts that reference Restaurant Management Co., Pizza Hut or this data breach, as scammers often use real breach notifications to trick people into sharing more personal information through fake emails, texts or phone calls.
• Report suspected identity theft to the Federal Trade Commission at IdentityTheft.gov or by calling 877-438-4338, and consider filing a police report as well for documentation purposes.