NCCTC Data Breach: Info & What To Do

Lemberg Law is investigating a recent data security incident involving Northern California Children’s Therapy Center (NCCTC). If you or your child participated in the Help Me Grow Yolo County Program, your personal information may have been affected.

How Did This Happen?

On March 16, 2025, NCCTC discovered that an unauthorized third party had exploited a vulnerability in its cloud-based file system. This system housed developmental screening records for the Help Me Grow Yolo County Program. NCCTC says it secured the system by March 19 and began an internal investigation with the help of cybersecurity experts.

Exposed Information

According to NCCTC, the potentially accessed records may include:

• Child’s name, gender, date of birth, home language, and developmental information
• Parent/caregiver’s name, contact information, and general health-related concerns
• Referring provider’s name, agency, and contact details
• Notes on family or provider concerns

What NCCTC Is Doing

NCCTC says it secured its systems, notified funding agencies, and brought in external IT and compliance experts. The organization has since reviewed its internal processes and taken steps to strengthen its data security infrastructure.

What You Should Do

If you were notified by NCCTC:

• Consider monitoring your accounts and communications for unusual activity
• Review your credit reports and personal records for suspicious changes
• Report suspected identity theft to the FTC or local law enforcement
• Contact Lemberg Law to understand your rights and whether you may be eligible for legal remedies

Need Help?

If NCCTC notified you or your child about this incident, Lemberg Law can help you evaluate your legal options. We offer free consultations—and you pay nothing unless we win.

Source: California Department of Justice