LGBTQ Center OC Data Breach Exposes PHI and PII

Gay & Lesbian Community Services Center of Orange County Inc., a nonprofit LGBTQ community center commonly known as LGBTQ Center OC, disclosed a data breach that occurred on Dec. 25, 2025, and Dec. 26, 2025. The total number of individuals affected across the United States remains undisclosed, although 481 Rhode Island residents were impacted.

The breach was reported to the California Attorney General on June 5, 2026. The organization also posted a notice on its website with information about the incident and instructions for affected individuals.

The personally identifiable information exposed included full names, dates of birth, Social Security numbers, driver's license numbers, state identification numbers, government identification numbers, passport numbers, taxpayer identification numbers, financial account information, payment card information and biometric identifiers.

The protected health information exposed included diagnosis information, prescription information, medical history and treatment information, medical record numbers and health insurance information.

LGBTQ Center OC's response to the breach

LGBTQ Center OC is offering complimentary credit monitoring services at no charge. To enroll, affected individuals need to visit a website provided in their notification letter and enter a unique enrollment code that was included with the letter.

Enrollment must be completed within 90 days of the date of the notification.

The organization set up a dedicated and confidential toll-free response line to answer questions about the incident. The notification further directed individuals to the Federal Trade Commission for additional identity theft resources and noted that those who suspect their information has been misused may file a police report with local law enforcement.