Ace Hardware Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Ace Hardware Corporation (“Ace”) regarding its recent data breach. The Ace data breach involved personal identifiable information belonging to over 7,000 individuals.


Ace is a retailer-owned hardware cooperative based in Illinois. Founded in 1924, Ace stores come in all sizes and shapes based on the needs of each individual neighborhood, including small urban stores, large rural stores, and everything in between.2 Today, Ace stores offer a wide variety of paint, lawn and garden essentials, tools, local niche services and virtually anything customers will need to fix, repair and maintain their home.2 Headquartered in Oak Brook, Illinois, Ace has over 5,500 locally owned and operated hardware stores in approximately 70 countries and employs over 5,000 individuals.


Recently, Ace discovered that it had experienced a data breach in which personal identifiable information in its systems may have been accessed and acquired. Through its investigation, Ace determined that an unauthorized party may have accessed this sensitive information between October 27 and October 29, 2023. On April 1, 2024, Ace began notifying individuals whose information may have been impacted. The type of information potentially exposed includes:

  • Name
  • Social Security number

If you received a breach notification letter from Ace Hardware Corporation:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by the Ace data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in any free credit monitoring services provided by Ace Hardware Corporation:
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: