EP Wealth Advisors Data Breach

In early 2026, EP Wealth Advisors, LLC reported a data security incident involving unauthorized access to certain internal systems. According to the company’s notice, the incident did not disrupt operations, and there is currently no indication that the accessed data has been publicly disclosed or used for fraud. Once EP Wealth became aware of the suspicious activity, the company initiated an investigation and brought in external cybersecurity professionals to assess the scope and nature of the incident.

During the investigation, EP Wealth confirmed that personal information may have been accessed by an unauthorized party. The company notified affected individuals through mailed letters, in accordance with legal requirements, and provided resources to help consumers protect themselves from potential misuse of their information.

EP Wealth Advisors, founded in 1999, provides comprehensive financial planning, investment management, and tax/estate planning. The firm manages assets for over 15,000 clients nationwide with a focus on personalized, fiduciary service. 

The company emphasized that clients continue to be served without interruption following the incident.

EP Wealth is offering guidance to impacted individuals, including steps to safeguard personal information, monitor financial accounts, and reduce risks related to identity theft. These steps include reviewing account activity, placing fraud alerts, taking advantage of free annual credit reports, and considering credit freezes. Detailed instructions were included with the mailed breach notification.

If you received a Data Breach Notification Letter from EP Wealth Advisors, it confirms that your information was potentially impacted.

What information is involved in the EP Wealth Advisors Data Breach?

Compromised information may include:

Your Personally Identifiable Information (PII) may be used by cybercriminals to commit identity theft or fraud—including opening unauthorized accounts, impersonating individuals, or conducting other malicious activity.

A specific category of PII is Protected Health Information (PHI)—medical‑related data protected under federal and state privacy laws. Because Cantata provides healthcare technology services, compromised PHI may be especially valuable to cybercriminals and can be misused in combination with PII. 

EP Wealth has advised individuals to remain vigilant by monitoring credit reports, reviewing financial account activity, and making use of fraud alerts or credit freezes. Additional supporting resources, including credit bureau contact information and state‑specific rights, were enclosed with the notification letter.

Residents of California benefit from additional privacy protections under the California Consumer Privacy Act (CCPA), which grants enhanced rights regarding personal data. California residents may also have additional protections under state consumer-privacy regulations.

If you received a NOTICE OF DATA BREACH letter from EP Wealth Advisors, your personal information may be at risk and could be misused for identity theft or fraud.

Contact the Data Breach Attorneys at Emery | Reddy today for a Free Case Review.