On December 18, 2024, Garden of Life, LLC informed its customers of a data breach that potentially exposed their personal payment information. The breach occurred due to unauthorized access to the software on its website that processes payment card information for online purchases. The company reported that the breach happened in July 2024 and involved a vendor’s software, which was separate from other parts of the website. Garden of Life confirmed that no other systems on their website were compromised in the incident.
The personal information accessed during the breach included customers’ names, email addresses, physical addresses, credit card and debit card numbers, expiration dates, and CVV numbers. The company has taken immediate action to address the situation by engaging cybersecurity experts and isolating the affected system. Garden of Life is continuing to investigate the incident to understand the full scope and is considering additional measures to prevent similar breaches in the future.
Garden of Life has partnered with IDX to provide affected individuals with monitoring
As a precaution, Garden of Life has partnered with IDX to provide affected individuals with a 12-to-24-month credit monitoring plan at no charge, along with up to $1 million in insurance coverage for certain expenses arising from the incident. Additionally, IDX will offer fully managed identity theft recovery services to assist those whose identities may have been compromised. These services are available at no cost to impacted individuals, who are encouraged to enroll by visiting the provided website or calling IDX customer support.
Customers are advised to check their credit and debit card accounts for any unauthorized transactions and to review the detailed steps outlined in the company’s notification. These steps include further recommendations from the Federal Trade Commission on how to protect their personal data. The deadline to enroll in the free identity protection services is April 17, 2025, and Garden of Life is working to ensure that those affected are fully supported during this process.
Reference:
