TransUnion review: Data breach

Recently, I received a letter from TransUnion acknowledging a “cyber event” that exposed sensitive personal information. This disclosure confirms that my data has been compromised multiple times through no fault of my own. These breaches have created significant risk and have directly contributed to fraudulent activity against me.
In 2020, a credit card account was fraudulently opened in my name without my authorization. Despite providing documentation and disputing this account with TransUnion, the bureau has refused to remove the fraudulent entry from my credit report. This refusal violates my rights under the Fair Credit Reporting Act (FCRA), which mandates that consumer reporting agencies maintain accurate information and conduct a reasonable reinvestigation when a dispute is filed. Under FCRA §611 (15 U.S.C. §1681i), unverifiable or fraudulent accounts must be deleted promptly.
The continued presence of this fraudulent account is causing ongoing harm to my creditworthiness and financial stability. I have acted diligently to protect my identity, yet systemic failures in data security and compliance have left me vulnerable. I demand immediate removal of all fraudulent accounts and a full reinvestigation of my credit file. Failure to comply will result in escalation to the Consumer Financial Protection Bureau (CFPB), the Federal Trade Commission (FTC), and potential legal action under FCRA §§1681n and 1681o for negligent or willful noncompliance.
I expect written confirmation of corrective action within the 30-day timeframe required by law.