Recently, Harnish Group reported to the Attorney General of Maine that it had experienced a data breach in which sensitive personal identifiable information in its care may have been compromised. According to the breach notice, on November 11, 2025, Harnish Group became aware of an incident that results in the unauthorized disclosure of personal identifiable information.1 As a result, Harnish Group launched an investigation to determine the nature of the incident.
Through its investigation, Harnish Group confirmed that sensitive personal information in its systems may have been accessed and acquired by an unauthorized third party during the breach. As a result, Harnish Group began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
NameSocial Security number
On December 22, 2025, Harnish Group began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to Maine residents, Harnish Group is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the form breach notification letters that Harnish Group filed with the Attorney General of Maine is below.