Local couple impacted by Chipotle data breach

May 31, 2017 08:09 PM

If you used your credit or debit card at Chipotle recently, thieves may already have your card number. If you report the fraud, your liability can be no more than $50 -- that's the law.

But because debit cards take money directly from your account, a thief can drain your checking account - leaving you to pay a boatload of fees when your transactions bounce. One Caledonia couple narrowly escaped that fate.

Heather Gronemeyer gave birth to her first child on April 11th – a handsome, healthy baby boy named Greyson. Her husband, Clay Gronemeyer was elated.

“Just holding him in my arms and it's kind of like looking at a mirror of a little me. It's been a wondrous experience," said Clay.

On April 12, rather than eat dinner from the hospital cafeteria, Heather asked her husband to pick up dinner at Chipotle. It's one of their favorite restaurants. Clay picked up a chicken bowl for her and a burrito for himself from the Chipotle on Mount Hope in Rochester. There, in their hospital room, the little family had their first meal together.

Days later, Clay got a phone call from his bank.

"They gave me a call and let me know that my card had been compromised due to the transaction at Chipotle," said Clay.

Clay was one of many customers whose credit or debit card was compromised at one of four Rochester-area locations during the following dates:

Click here
 to see which locations were targeted

Advertisement – Content Continues Below

Your card was likely compromised if you used it at one of four Rochester area Chipotle locations during the following dates:

Address Dates

640 Jefferson Road, Rochester 3/25/2017–4/18/2017

1847 Ridge Road West, Rochester 3/26/2017–4/18/2017

1495 East Ridge Road, Rochester 3/26/2017–4/18/2017

1360 Mount Hope Ave, Rochester 3/26/2017–4/18/2017

Thieves used malware that stole the customer's name, credit card number, expiration date, and verification code. Chipotle has provided a website so customers can find out whether the store they patronized was affected.

This isn't the first time the Gronemeyer’s debit card has been compromised. It happened four years ago when Target's system was hacked.

Fortunately, the couple didn’t lose any money either time. A Chipotle spokesman told News10NBC that company leaders contacted payment card networks as soon as they discovered the fraud. That's how Clay's bank was able to change his debit card number before the hackers stole his money. But company leaders still stress that it’s very important that anyone who used a credit or debit card during the affected dates continue to be vigilant.

While his wife is now nervous about using the debit card, Clay is not. In fact he's been back to his beloved Chipotle and he used his debit card. "I feel like once they caught it they went through their protocols and increased security," said Clay.

Chipotle leaders confirm they're working with cyber security firms to enhance security. If you have questions about the breach, you can contact Chipotle directly at 1-888-738-0534. 

If you used plastic at one of the affected restaurants, here's Deanna’s Do List.

1. Check your online statements every day.  You have to be vigilant.

2. Report any suspicious activity to your credit card issuer / bank immediately.

3. Report suspected identity theft to the Federal Trade Commission.

4. Consider placing a fraud alert or freeze on your credit file.  You can do that by phone, mail or online.

Equifax, PO Box 740256, Atlanta, GA 30374,, 1-800-685-1111

Experian, PO Box 9554, Allen, TX 75013,, 1-888-397-3742

TransUnion, PO Box 2000, Chester, PA 19016,, 1-800-680-7289


Deanna Dewberry

Copyright 2017 - WHEC-TV, LLC A Hubbard Broadcasting Company

Relay Media Amp

We no longer have Facebook comments on this site. Please visit our Facebook Page to join the conversation.