After Minnesota-based CHS Inc. mailed PATR-1099 forms to its patrons in mid-November, they received a call from one recipient alerting them that both the name and Social Security Number was visible through the window in unhyphenated form. After investigating, CHS determined that SSN were exposed in at least some cases.
In a letter to the New Hampshire Attorney General’s Office, the company indicated that it was sending notifications and offers of free credit monitoring to everyone who had been sent the form because they could not determine precisely which mailings exposed SSN and which didn’t. The total number of those notified was not reported.