Report an ACH Data Breach

Data security is essential to the ACH Network, and Nacha takes any and all data breaches seriously. We rely on your prompt reporting of any such breaches in order to monitor Network trends and weaknesses. If your financial institution has experienced a consumer-level ACH data breach, we provide a standardized form to notify us of the incident.

Our Interim Policy on ACH Data Breach Requirements provides a clear means for ODFIs to report any theft or misuse of consumer-level ACH data. That reporting, in turn, increases the Network’s security and helps Nacha mitigate future data theft.

Requirements for Reporting an ACH Data Breach

If an ODFI suspects that there has been an ACH data breach of consumer-level data, the Interim Policy requires that:

  • The ODFI notify Nacha of the ACH data breach
  • The ODFI notify affected RDFIs of the ACH data breach

To report an ACH data breach, ODFIs should use the form below. A Nacha representative will confirm receipt of your submitted information within 24 hours.

ACH Data Breach Reporting Form

Related content

November 10, 2022

CGI

Founded in 1976, CGI is among the largest IT and business consulting services firms in the world. We are insights-driven and outcomes-based to help accelerate returns on your investments.  Financial institutions around the world rely on CGI to prepare for a digital-first future and navigate the…
November 04, 2022

IBM Payments Center

  Read the Executive Brief  
November 03, 2022

Socure

Socure is the leading platform for digital identity verification and trust. Its predictive analytics platform applies artificial intelligence and machine learning techniques with trusted online/offline data intelligence from physical government-issued documents as well as email, phone, address, IP…