Yorozu Automotive Data Breach Affects 20,627 Individuals: PHI and PII Exposed

Published
July 2, 2026
Updated
July 2, 2026
Yorozu Automotive Data Breach Affects 20,627 Individuals: PHI and PII Exposed
Yorozu
Affected by the data breach? You may be entitled to compensation. Submit a claim today.

Yorozu Automotive Tennessee Inc., a U.S. manufacturing subsidiary of Japan-based Yorozu Corporation, disclosed a data breach that has affected 20,627 individuals in the United States, including 22 Indiana residents, eight Massachusetts residents and one Vermont resident.

The incident took place on Oct. 9, 2024. The range of exposed information was extensive and spanned several sensitive categories.

The personally identifiable information (PII) compromised in the breach included full names, home addresses, dates of birth, Social Security numbers, Social Security cards, driver's license numbers, government-issued identification cards and other government identification numbers, financial information, including credit and debit card numbers, financial account information and financial account access codes, employment-related documents, including W-2 tax forms and pay stubs.

In addition, the breach exposed protected health information (PHI) including health records and medical records.

The company began notifying affected individuals on June 2, 2026.

Yorozu Automotive Tennessee's response to the breach

The company is offering 24 months of free identity theft protection services through IDX. The services include credit monitoring, CyberScan monitoring, a $1,000,000 insurance reimbursement policy and fully managed identity theft recovery services.

Affected individuals can enroll in the IDX protection services by visiting the IDX enrollment page and entering the unique enrollment code included in their notification letter. The deadline to enroll is Sept. 2, 2026. IDX representatives are available Monday through Friday from 9 a.m. to 9 p.m. Eastern Time to answer questions about enrollment and the available services.

The company also established a dedicated assistance line for people affected by the breach. The line is available Monday through Friday from 9 a.m. to 9 p.m. Eastern Time, excluding holidays. The phone number was included in each individual's notification letter, and callers should reference the Yorozu incident when contacting the line.

SUBMIT YOUR CLAIM TO THE LAW FIRM HANDLING THIS INVESTIGATION

Types of INFORMATION affected
  • Names
    Names
  • Social security numbers
    Social Security Numbers
  • Dates of birth
    Dates of Birth
  • Addresses
    Addresses
  • Government IDs
    Government IDs
  • Medical Information
    Medical Info
  • Financial Info
    Financial Info
  • Affected information types not yet disclosed

Notice Letter

This browser does not support inline PDFs. Please download the PDF to view it: Download PDF

Affected Entity
Yorozu
Consumers Notification date
Date of Breach
October 9, 2024
Breach Discovered Date
Total People Affected
20627
Information Types Exposed
  • Addresses
  • Credit and Debit Account Info
  • Credit/Debit Numbers
  • Date of birth
  • Drivers Licenses
  • Financial Account
  • Financial Account Codes
  • Full name
  • Government ID Numbers
  • Government issued identification card
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image