Call Us

CCIM Institute Data Breach

Posted on behalf of Arnold Law Firm on February 12, 2025 in Data Breach
Updated on February 13, 2025

NOTICE: If you received a NOTICE OF DATA BREACH letter from CCIM Institute, contact the Arnold Law Firm at (916) 777-7777 to discuss your legal options, or submit a confidential Case Evaluation form here.

On January 24, 2025, The CCIM Institute (“CCIM”) reported a significant cybersecurity incident to the Maine Attorney General’s Office. According to the notice, on July 12 and July 13, 2024, an unauthorized party accessed consumers’ private and sensitive personal information stored in CCIM’s system (the “Data Breach”). The Data Breach has impacted approximately 1,754 individuals.

In January 2025, CCIM began sending data breach notification letters to those affected by the Data Breach. Each notification letter includes 24-month complimentary access to credit monitoring and identity restoration services provided by Experian. If you received a data breach notification letter or email from CCIM, it indicates that your information was compromised in the Data Breach.

CCIM provides commercial and investment real estate education and is headquartered in Chicago, Illinois. Established in 1967, CCIM certifies its more than 13,000 worldwide members as commercial real estate development and investment professionals. With an annual revenue of approximately $64 million, CCIM employs around 340 people.

WHAT INFORMATION IS INVOLVED IN THE CCIM INSTITUTE DATA BREACH?

As the Data Breach was only recently announced, CCIM has disclosed very limited information so far. We are closely monitoring the ongoing investigation, and more details are expected to emerge as the company is required to notify all impacted individuals. 

Typically, the confidential information compromised in such cybersecurity incidents involves your name, date of birth, Social Security number, driver’s license information, government-issued ID number, and financial information.

Collectively, this information is called your Personally Identifiable Information (“PII”). It tells others about you and is considered part of your identity. Businesses are required to secure this information or risk facing statutory penalties, among other legal penalties. Stolen PII can be used by identity thieves to engage in fraudulent activity using your identity. 

The best way to protect yourself after a data breach is to sign up for credit and identity protection services as soon as possible. 

California offers extra protections and legal rights to its residents through the California Consumer Privacy Act (“CCPA”).

NOTICE: If you received a NOTICE OF DATA BREACH letter from CCIM Institute contact the Arnold Law Firm at (916) 777-7777 to discuss your legal options, or submit a confidential Case Evaluation form here.