LOS ANGELES – Councilmember Ysabel Jurado today introduced a motion seeking answers and accountability from the City Attorney’s Office following a reported data breach involving a third-party platform used to store and share sensitive legal records. With key details still unclear – including when the City became aware of the breach, what actions were taken in response, and what information may have been exposed – the motion calls for a public report of the facts and a clear timeline of the City’s response.
Read the motion here.
“The most alarming part of this is not just the breach itself, but the possibility that City leaders knew and failed to provide timely transparency to the Council and the public,” said Councilmember Jurado. “If City officials were aware of this breach weeks ago, the Council and the public should not still be piecing together the facts from media reports. My motion is about transparency, accountability, and protecting the City. We need to understand what information was exposed, who may be affected, whether proper notifications are being made, and what liability this creates for Los Angeles. This appears to be a serious governance failure, and the public deserves answers.”
Preliminary information suggests that a large number of records may have been accessed, including materials that could contain sensitive personnel information and legal case materials. The potential release of these files raises concerns about the privacy and safety of City employees, witnesses, and others who may have provided information with an expectation of confidentiality. It could also impact related or ongoing legal matters and expose the City to significant legal and financial liability.
Councilmember Jurado’s motion calls on the City Attorney to appear before the City Council to provide a public report of all non-privileged facts, including:
- A clear timeline of events, including when the breach occurred, when it was detected, and when City officials and departments were notified;
- A detailed accounting of the scope of the breach, including the categories of records and types of sensitive information potentially exposed;
- Clarity of notification obligations, including who has been notified, who has not, and how those determinations are being made; and
- An assessment of legal and financial exposure, including potential liability and impacts to active or related cases.
The motion also calls for a confidential legal briefing, where appropriate, to address privileged matters. It also directs the City’s Information Technology Agency to report on how the system was compromised, what vulnerability or vendor issues contributed to the breach, and what corrective actions will be taken to strengthen security and prevent future incidents.
Councilmember Jurado is focused on ensuring transparency, protecting impacted individuals, understanding the City’s potential exposure, and putting stronger safeguards in place.