Message to our Experian customers from Craig Boundy, CEO

As you may have heard, we recently detected unauthorized access to a server that contained data for one of our clients, T-Mobile USA. No other clients were impacted and our consumer credit database was not accessed in this incident.

First and foremost, let me sincerely apologize for everyone affected by this event.

I’d like to take a moment to provide you with facts about what happened and the steps we are taking to protect you and your information:

Here’s what we know:

  • The unauthorized access was in an isolated incident over a limited period of time. It included access to a server that contained personal information for consumers who applied for T-Mobile USA postpaid services between September 1, 2013 and September 16, 2015.
  • The information included names, dates of birth, addresses and Social Security numbers.
  • The server belonged to an Experian business completely separate from our credit bureau business. The incident did not impact our consumer credit database.
  • While we have no indication to date that the data has been used, as soon as we detected the incident, we took immediate action to:
    • Secure the server
    • Prepare to notify all impacted consumers with guidance on how to protect themselves
    • Notify law enforcement, including the FBI, to assist with their criminal investigation

To provide support and help alleviate concerns, we are providing two years of free credit monitoring and identity protection services to anyone impacted.

For more information regarding the investigation and the actions Experian is taking to protect consumer information, please visit

Once again, let me apologize for this event and we will continue to work tirelessly to earn your trust.

Thank you.

Experian and the Experian marks used herein are service marks or registered trademarks of Experian Information Solutions, Inc. Other product and company names mentioned herein are the property of their respective owners.