Changeflow GovPing Data Privacy & Cybersecurity Tower FCU Data Breach Notification
Priority review Notice Amended Final

Tower FCU Data Breach Notification

Favicon for www.mass.gov Massachusetts - Breach Notification Letters (Mar 2026)
Detected March 25th, 2026
Email

Summary

Tower Federal Credit Union has issued a data breach notification following an inadvertent employee error that sent a member's personal information, including Social Security number and date of birth, to another member. The credit union has updated its internal processes and provided credit monitoring services to affected individuals.

View original document View source feed page

What changed

Tower Federal Credit Union (Tower FCU) is notifying members of a data breach resulting from an employee error that inadvertently sent a member's personal information, including their date of birth, Social Security number, and home address, to another member. The incident was discovered following a member's email inquiry. Tower FCU has since revised its internal processes for handling hardship applications and implemented additional training to prevent future occurrences.

Affected individuals are advised to remain vigilant for suspicious account activity over the next 12-24 months. Tower FCU has enrolled affected members in a 24-month credit monitoring service through Experian IdentityWorks, requiring enrollment by June 30, 2026. Members are instructed to report any unusual activity on their Tower FCU accounts immediately.

What to do next

  1. Enroll in Experian IdentityWorks credit monitoring by June 30, 2026
  2. Report any suspicious account activity to Tower FCU immediately

Source document (simplified)

The logo for Tower Federal Credit Union. It features a stylized shield icon on the left, composed of several horizontal bars of varying lengths. To the right of the shield, the word "Tower" is written in a large, bold, sans-serif font. Below "Tower", the words "FEDERAL CREDIT UNION" are written in a smaller, all-caps, sans-serif font.

Tower Federal Credit Union logo

Two solid black rectangular boxes used to redact information. The first box is smaller and positioned above the second, which is larger and wider.

Redacted information

We are in receipt of your email dated February 18, 2026 in which you included correspondence from another member of Tower Federal Credit Union (Tower FCU) indicating that some of your personal information had been inadvertently sent to that member.

Tower FCU takes the security of its member information very seriously and we appreciate you bringing this matter to our attention. After your notice, an immediate investigation was conducted. It was discovered this incident was the result of an inadvertent employee transmission error, involving only the information you noted in your email.

Information included in the document that was inadvertently sent:

  • Date of birth
  • Social Security number
  • Phone number
  • Home address

Through our investigation, we have concluded that this was an isolated incident; however, Tower FCU has reviewed and changed the process concerning how employees locate and send hardship applications to members. Additional process and training changes have been made to restrict access of hardship application files that Tower FCU sends and receives to ensure that something like this does not occur in the future.

We have had discussions with the member that incorrectly received your information and have provided instructions to that member to delete such information, which she has agreed to do. We also received assurances from that member they have not and will not make any use of your information. That said, we ask that you remain vigilant over the next twelve (12) to twenty-four (24) months to identify any suspicious account activity. As a courtesy to you, we have subscribed on your behalf to a credit monitoring service (for the next 24 months).

Details are below:

Experian IdentityWorksSM

  • Ensure that you enroll by June 30th, 2026 by 11:59 pm UTC (Your code will not work after this date.)

The logo for Tower Federal Credit Union features a stylized 'T' and 'F' intertwined within a shield-like shape, followed by the word 'Tower' in a large, bold, sans-serif font, and 'FEDERAL CREDIT UNION' in a smaller, all-caps, sans-serif font below it.

Tower Federal Credit Union logo

If you identify any unusual activity with any of your Tower FCU accounts, we ask that you report it to us immediately.

Your recent email also inquired about requested changes to one or more existing accounts. We will contact you separately concerning those particular requests.

Please contact me with any questions at 240-554-6370.

Sincerely,

Tower Federal Credit Union

Image: Signature of Christopher O'Bryant

Christopher O'Bryant/Vice President, Collections

Related changes

Favicon for www.mass.gov Kaaj Technologies Data Breach Notification
Priority review Mar 28, 2026 Massachusetts - Breach Notification Letters (Mar 2026) Data Privacy & Cybersecurity
Favicon for www.mass.gov MXB Battery Operations LP Data Breach Notification
Priority review Mar 28, 2026 Massachusetts - Breach Notification Letters (Mar 2026) Data Privacy & Cybersecurity
Favicon for www.mass.gov CW Advisors Data Breach Notification
Priority review Mar 28, 2026 Massachusetts - Breach Notification Letters (Mar 2026) Data Privacy & Cybersecurity
Favicon for www.bafin.de BaFin Warns Walnut Planet GmbH Offering Unregistered Capital Investments
Priority review Mar 30, 2026 BaFin News Banking & Finance
Favicon for www.accc.gov.au ACCC Updates Franchise Disclosure Register Form Requirements
Routine Mar 30, 2026 ACCC News Centre Consumer Protection
Favicon for www.jdsupra.com Fiecke-Stifter v. MidCountry Bank - TILA/FDCPA Claims in Foreclosure
Priority review Mar 30, 2026 JD Supra Finance & Banking Banking & Finance

Source

Favicon for www.mass.gov
Massachusetts - Breach Notification Letters (Mar 2026) mass.gov/lists/data-breach-notification-letters-march-2026
Data Privacy & Cybersecurity
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
GP
Compliance deadline
June 30th, 2026 (92 days)
Instrument
Notice
Legal weight
Binding
Stage
Final
Change scope
Substantive

Who this affects

Applies to
Consumers Financial advisers
Industry sector
5221 Commercial Banking
Activity scope
Data Breach Notification
Geographic scope
United States US

Taxonomy

Primary area
Consumer Protection
Operational domain
Compliance
Compliance frameworks
BSA/AML
Topics
Data Privacy Cybersecurity

Browse Categories

Agriculture & Food Safety 63 AI Regulation 3 Banking & Finance 266 Consumer & Competition 1 Consumer Protection 44 Courts & Legal 363 Data Privacy & Cybersecurity 75 Defense & National Security 52 Education 20 Energy 107 Environment 85 Government & Legislation 285 Healthcare 136 Housing 16 Immigration 9 Insurance 58 Labor & Employment 114 Legal & Courts 1 Pharma & Drug Safety 103 Securities & Markets 104 Tax 65 Tax & Revenue 1 Telecom & Technology 47 Trade & Sanctions 124 Transportation 57

Get Data Privacy & Cybersecurity alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when Massachusetts - Breach Notification Letters (Mar 2026) publishes new changes.

Optional. Personalizes your daily digest.

Free. Unsubscribe anytime.