On October 21, an employee of Sea Ray Boats unintentionally sent an email to 698 dealership personnel that contained the names, contact information, and Social Security numbers of 341 of the 698 employees. The company realized its mistake, and within an hour, sent out another email asking recipients to destroy the first email.
Despite the fact that the exposure was only to fellow employees, the company notified all employees by regular mail on October 30 and offered them a year of free credit monitoring.
All in all, I think it was some nice handling of the incident. Prompt response, support, and clear explanation of what happened (see their letter). The only thing missing, perhaps, is some statement as to how they’re going to prevent future problems of a similar nature.