Privacy Rights Clearinghouse

Single User Access (Updated 2026-04-26)

$450.00 USD

Sale Sold out

Variant Single User Download Pass Single User Download Pass (Academic)

Quantity

Privacy Rights Clearinghouse has tracked data breach notifications since 2005. The Data Breach Chronology aggregates breach notification filings from 21 state attorneys general and the U.S. Department of Health and Human Services into a single structured database. 99,639 records and growing, updated weekly.

One user, one snapshot. The complete database as it stands when you purchase. Your download link stays active for one year. SQLite, CSV, and Excel formats included. Commercial use permitted.

Point-in-Time Snapshot
Version current at purchase

Three Formats
SQLite, Excel, CSV

Commercial Use
Integrate into your products

1-Year Download Access
Re-download anytime

Working with a team? This license is for a single user and cannot be shared. Team Snapshot adds organization-wide access for $100 more ($550 / $350 academic).

65 Fields Per Record

Category	What's included
Organization	Normalized name, type (7 categories such as MED, BSF, GOV), subtype (86 classifications such as hospital-health-system, credit-reporting-agency, data-broker), and acceptable name variants for consistent entity tracking across the database.
Breach	Type (7 categories), subtype (36 specific methods such as ransomware, phishing, credential-stuffing), third-party vendor name when the breach originated at a service provider, and a narrative incident summary extracted from the notification letter.
Impact	Total individuals affected, state residents affected, and personal information exposed classified against the 13 information categories defined by the California Consumer Privacy Act (CCPA).
Dates	Reported date, breach start date, breach end date.
Location	Street address, city, state, zip, country, and geocoded latitude/longitude coordinates for spatial analysis.
Corporate identifiers	Where matches exist in public registries: SEC EDGAR (CIK + ticker), GLEIF LEI, NPI, IRS EIN, IPEDS, FDIC, NCUA, and Census Bureau ID. Coverage varies by organization type and the quality of information available in source filings.
Breach event grouping	When the same breach generates notifications in multiple states, or a shared vendor compromise affects many organizations, those filings are linked by a stable group identifier with pre-computed event-level aggregates: combined impact totals, merged timelines, per-organization breakdowns, and vendor event identification.
Source documentation	Original government filing URL, archived notification letter URL, and full extracted notification letter text (SQLite format only).

Complete field documentation (README.pdf) included with every purchase.

Try Before You Buy

1,000-record sample in all three formats:

SQLite | Excel | CSV

Used by researchers at more than 250 institutions across 26 countries. The Data Breach Chronology serves economists modeling supply chain risk, legal scholars studying enforcement gaps, security professionals tracking emerging threats, policy researchers studying patterns in data privacy, and cybersecurity platforms integrating breach intelligence into their products.

Purchases support Privacy Rights Clearinghouse's nonprofit mission. We may be able to provide fee waivers for researchers conducting unfunded academic work that advances consumer privacy. To apply, submit your request to [email protected].

This license provides a single user with access to the database version current at time of purchase. Your download link remains active for one year for convenient re-downloads. The database may be used by a single user within your organization and integrated into commercial products, but may not be shared or redistributed in its entirety.

View full details