TD Bank employee ‘improperly’ accessed customer data


TD Bank has said it reimbursed client accounts, where applicable, after discovering that one of its employees had accessed the personal information of several dozen customers.

The New Jersey-headquartered bank said the employee had been accessing the personal data of some customers for several months before being discovered. The breach affected a total of 41 bank clients, it said.

“We recently discovered that between September 2023 and March of 2024, one of our employees improperly accessed some of your personal information without a legitimate business purpose,” the company said in a customer notification letter dated August 9th.

ADVERTISEMENT

The personal information that may have been exposed included names, addresses, social security numbers, dates of birth, debit card numbers, expiration dates, and security codes.

“We have reimbursed your account if applicable and we are taking action to better protect your information in the future,” the bank said.

It also said this was “an isolated incident” that was being addressed through an internal investigation by the company’s corporate security team. Law enforcement has also been involved, it said.

TD Bank is one of the largest banks in the United States, operating in 15 states – mostly across the East Coast – and Washington, D.C. It is owned by a Toronto-based multinational banking and financial services company TD Bank Group.