Data Breach Notification Letters

Kroll will work with your team to implement a personalized, plain-language notification letter that provides pertinent information and maintains message control.

Contact us

The art of crafting a notification letter is one that can sometimes be taken for granted – and yet it is your primary communication with stakeholders regarding your data security incident, making it of great significance in controlling your message and quelling breach population fears. There are many nuances, but any good letter will include some basic information:

  • All notification letters, within the confines of what’s allowed by law, contain some explanation of the event. Of course, what happened may not be uniform across an entire population – a breach may have distinct recipient populations requiring different letters. This could be based not only upon what was lost or exposed for each group, but also demographic makeup or state-by-state regulatory requirements.
  • Contact information will direct individuals to Kroll's call center or another designated source for further information about the breach or identity theft threat that may be present.
  • Many state laws require organizations to include information on standard consumer protection rights, such as how to place a fraud alert or credit freeze.
  • An organization may choose to include information on what steps are being taken to protect stakeholders’ sensitive information. This may also include information on identity monitoring services that are being provided to the affected population.

Your Kroll team will work with you and your legal counsel to draft a personalized, plain-language communication that provides information about your data breach event, as well as the solutions being offered. We’ll segment your letters by state to address unique regulatory stipulations and will optimize delivery routes to help you meet required deadlines.

Once the letter has been drafted, Kroll will also be on hand to assist with the logistics of mailing, and preparing for responses from your affected population. We will work closely with your team to optimize speed and deliverability, while also reducing unnecessary notification costs. Kroll’s team can work with you to:

  • Standardize and scrub your mailing list for optimal delivery
  • Assemble the most up-to-date contact information based on the National Change of Address database to improve delivery outcomes
  • Eliminate duplicate entries
  • Provide you with comprehensive reports that demonstrate and document your best effort to locate, notify and serve those people affected by your event
  • Help you compile contact information for incomplete or missing addresses
  • Manage returned mail

Once this is completed, we can review your mailing list and separate the groups that require special handling, such as: children, adults, expatriates or decedents. We can separate these categories, identifying which individuals might have special considerations for consumer services, or groups that are at a higher risk based on information lost.

Increased Cyber Resilience with a Cyber Risk Retainer

Kroll delivers more than a typical incident response retainer—secure a true cyber risk retainer with elite digital forensics and incident response capabilities and maximum flexibility for proactive and notification services.

Connect with us

Connect with us

Jason N Smolanoff
Jason N. Smolanoff
President, Cyber Risk
Cyber Risk
Los Angeles
David White is EMEA Leader
David White
Global Head of Identity Theft and Breach Notification
Cyber Risk

See all servicesStay Ahead with Kroll


Valuation of businesses, assets and alternative investments for financial reporting, tax and other purposes.

Compliance and Regulation

End-to-end governance, advisory and monitorship solutions to detect, mitigate and remediate security, legal, compliance and regulatory risk.

Corporate Finance and Restructuring

M&A advisory, restructuring and insolvency, debt advisory, strategic alternatives, transaction diligence and independent financial opinions.

Cyber Risk

Incident response, digital forensics, breach notification, managed detection services, penetration testing, cyber assessments and advisory.

Environmental, Social and Governance

Advisory and technology solutions, including policies and procedures, screening and due diligence, disclosures and reporting and investigations, value creation, and monitoring.

Investigations and Disputes

World-wide expert services and tech-enabled advisory through all stages of diligence, forensic investigation, litigation, disputes and testimony.

Business Services

Expert provider of complex administrative solutions for capital events globally. Our services include claims and noticing administration, debt restructuring and liability management services, agency and trustee services and more.

Explore insights


Data Breach Outlook: Health Care is the Most Breached Industry of 2022

Jan 26, 2023

by David White

Penetration Testing

AWS Penetration Testing Gives In-Depth Cyber Risk Insight to Specialist Bank


Live from Davos – Cyber in 2023: Geopolitical and Economic Risks

Jan 16, 2023

by Jason N. SmolanoffMegan  Greene


Black Basta – Technical Analysis

Jan 23, 2023

by Stephen Green, Elio Biasiotto



Kroll Expands Global Data Breach Notification in Australia

Nov 10, 2020


Kroll Named a Cyber Security Services Pacesetter by ALM Intelligence

Oct 28, 2020


Kroll Recognized Among Top Managed Security Service Providers Worldwide by MSSP Alert

Sep 29, 2020

Press Release

Kroll Strengthens Digital Forensics and Incident Response Team in EMEA with Colin Sheppard

May 25, 2023

Return to top