Update From OneTrust on Klue-Salesforce Security Incident 

June 19, 2026

Trust is at the core of what we do at OneTrust, and we take our responsibility to protect data privacy and security seriously. We want to be transparent about a recent third-party incident associated with market intelligence platform Klue, impacting OneTrust and other organizations.

On June 17, 2026, we identified unauthorized activity within our Salesforce environment associated with a broader security incident impacting Klue’s third-party integration service. As soon as we identified this incident, we took proactive steps to contain the issue and secure our environment.  

The activity is linked to a compromised Klue–Salesforce integration that threat actors used to access customer Salesforce environments. Numerous companies were impacted. 

We are working diligently to determine the full scope of the incident and validate all impacted data with the support of Klue, third-party cybersecurity vendors, privacy counsel, and forensic experts. 

Our investigation to date indicates this incident is isolated to third-party CRM-related data accessible through the Klue–Salesforce integration. As we continue our investigation, we are communicating directly with customers who we believe may be affected. 

We are committed to providing you with timely and transparent updates as our investigation progresses. If you have questions, please reach out to your appropriate contact at OneTrust or contact our support team here.