Child Care Resource Center (CCRC), a Chatsworth, California-based nonprofit that administers subsidized child care and resource & referral (R&R) programs for families across Los Angeles County, has notified affected individuals of a data breach. CCRC determined that certain internal files were sent to an external email account and, after investigating, found that files dated between October 4, 2016 and October 15, 2025 were forwarded to an unauthorized account.
The breach was reported to the California Attorney General’s office on July 2, 2026. CCRC has not publicly disclosed how the unauthorized forwarding occurred, how many individuals nationwide are affected, or a complete breakdown of the information involved.
What Information Was Exposed?
CCRC has not yet published a full breakdown of the data elements involved in this incident. Its notification letter offers affected individuals complimentary Experian IdentityWorks credit monitoring and includes guidance on protecting medical information, both signals that the exposed files may include sensitive personal information, and possibly health-related details, tied to families’ child care case records. Affected individuals should review their notification letter directly for the specific information involved in their case.
Why This Breach Is Especially Concerning
Unlike a breach that exposes a single database at one point in time, this incident involves files spanning nearly nine years — from October 2016 to October 2025. That means the records affected could include years of subsidy applications, eligibility documentation, and family case files, potentially compounding the number of families and children whose information was involved. Because CCRC administers subsidized child care programs, the files at issue may include the kind of financial and personal information families provide to establish and maintain program eligibility.
What Is Child Care Resource Center Offering Affected Individuals?
CCRC is offering affected individuals complimentary credit monitoring through Experian IdentityWorks. Affected individuals should refer to their notification letter for the exact enrollment deadline, activation code, and number of months of coverage, as these details vary by notice.
Your Information Is at Risk
If you received a Notice of Data Breach letter from Child Care Resource Center, it confirms your information may have been involved in this incident. Affected individuals should:
- Review your notification letter carefully for enrollment instructions and the specific information involved in your case
- Enroll in the complimentary Experian IdentityWorks monitoring before the deadline listed in your letter
- Place a fraud alert or credit freeze with Equifax, Experian, and TransUnion
- Monitor financial accounts and any records tied to your child care benefits for unfamiliar activity
- Watch for phishing attempts referencing CCRC, your child care case, or your subsidy benefits
Do You Have Legal Options?
Organizations that administer subsidized child care programs are entrusted with sensitive family, financial, and — in some cases — children’s information, and have a legal obligation to safeguard it. When that obligation is not met, affected individuals may have legal rights and remedies worth discussing with an attorney.
Contact the Data Breach Attorneys at Emery | Reddy today for a Free Case Review.
FAQ
How many people were affected by the Child Care Resource Center data breach?
CCRC has not publicly disclosed the total number of individuals affected; the company has described the number as undetermined in its public notice.
What information was exposed?
CCRC has not published a full list of data elements involved. Affected individuals should check their notification letter for the specific information at issue in their case.
What files were involved?
According to CCRC’s investigation, files dated between October 4, 2016 and October 15, 2025 were forwarded to an unauthorized external email account.
Is Child Care Resource Center offering credit monitoring?
Yes. CCRC is offering complimentary Experian IdentityWorks credit monitoring. Check your notification letter for your specific activation code and enrollment deadline.
What should I do if I received a notification letter?
Follow the enrollment instructions in your letter, place a fraud alert or credit freeze with the three credit bureaus, monitor your accounts, and consider speaking with a data breach attorney about your options.