On October 25, 2019, the City was notified by CentralSquare, the City’s third-party online payment processing vendor, of a minor issue with the online payment portal. It was not until December 12, 2019, that the City was further made aware that there were unauthorized alterations to the software code in the Click2Gov portal that would allow the copying of a user’s credit card data entered into their internet browser when making a payment. The City immediately began an assessment along with external data privacy professionals and CentralSquare, which engaged a third-party forensic firm to determine what happened and what information may have been affected during the relevant time period. CentralSquare has indicated that this incident may affect individuals who used the City’s payment system to make a payment to the City between August 30, 2019 and October 14, 2019. The unauthorized user may have acquired information that included first and last names, billing addresses, payment card numbers, payment card types, CVVs (security code) and expiration dates. Social Security numbers were not impacted by this incident.