https://images.rankiteo.com/companyimages/gap-inc-.jpeg

Gap Inc. Company CyberSecurity Posture

Gap Inc., a house of iconic brands, is the largest specialty apparel company in America. Its Old Navy, Gap, Banana Republic, and Athleta brands offer clothing, accessories, and lifestyle products for men, women and children. Since 1969, Gap Inc. has created products and experiences that shape culture, while doing right by employees, communities and the planet. Gap Inc. products are available worldwide through company-operated stores, franchise stores, and e-commerce sites. Fiscal year 2023 net sales were $14.9 billion. For more information, please visit www.gapinc.com.

Gap Inc. A.I CyberSecurity Scoring

Gap Inc.

Company Details

Linkedin ID:

gap-inc-

Website:

https://jobs.gapinc.com

Employees number:

68,676

Number of followers:

518,604

NAICS:

Industry Type:

Retail

Homepage:

gapinc.com

IP Addresses:

Scan still pending

Company ID:

GAP_1931798

Scan Status:

In-progress

Gap Inc. Risk Score (AI oriented)

Between 700 and 749

Gap Inc. Retail

Updated: 12/12/2025

Powered by our proprietary A.I cyber incident model
Insurance preferes TPRM score to calculate premium

Gap Inc. Global Score (TPRM)

XXXX

Gap Inc. Retail

—

Instant access to detailed risk factors
Benchmark vs. industry & size peers

Vulnerabilities
Findings

Gap Inc.

Moderate

Current Score

733

Ba (Moderate)

01000

2 incidents

-64.0 avg impact

Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.

DECEMBER 2025

796

Breach

03 Dec 2025 • Gap Inc.: Gap International Data Breach Investigation

Gap Data Breach Involving Sensitive Personal and Health Information

Recently, Gap reported to the Attorney General of Vermont that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice, on July 22, 2025, Gap experienced a network disruption.1 As a result, Gap launched an investigation to determine the nature of the incident. Through its investigation, Gap confirmed that sensitive personal information in its systems may have been accessed or acquired by an unauthorized third party during the breach. As a result, Gap began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes: Name Social Security number Driver’s license or state ID number Medical information Health insurance information On November 28, 2025, Gap began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to Vermont residents, Gap is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the breach notification letters that Gap filed with the Attorney General of Vermont is below.

732

critical -64

GAP1764815006

Incident Details -

Type

Data Breach Unauthorized Access

Impact

Name Social Security number Driver’s license/state ID number Medical information Health insurance information Brand Reputation Impact: Potential negative impact due to exposure of sensitive PII/PHI Identity Theft Risk: High (due to exposure of SSNs, driver’s license numbers, and health information)

Response

Communication Strategy: Notification letters mailed to affected individuals on 2025-11-28, offering complimentary credit monitoring services.

Data Breach

Personally Identifiable Information (PII) Protected Health Information (PHI) Sensitivity Of Data: High (includes SSNs, driver’s license numbers, medical, and health insurance information) Data Exfiltration: Potential access or acquisition by unauthorized third party

Regulatory Compliance

Regulatory Notifications: Notified Attorney General of Vermont

Investigation Status

Completed (as of November 2025)

Customer Advisories

Notification letters sent to affected individuals with details of compromised data and credit monitoring offers.

References

Blog URL Source URL

NOVEMBER 2025

796

OCTOBER 2025

796

SEPTEMBER 2025

796

AUGUST 2025

796

JULY 2025

796

JUNE 2025

796

MAY 2025

796

APRIL 2025

796

MARCH 2025

796

FEBRUARY 2025

796

JANUARY 2025

796

JANUARY 2010

797

Breach

25 Jan 2010 • Gap Inc.

Gap Inc. Data Breach

The Massachusetts Office of Consumer Affairs and Business Regulation reported a data breach involving Gap Inc. on January 25, 2010. The breach affected 1 individual and involved compromised credit/debit numbers from electronic records.

734

medium -63

GAP250071625

Incident Details -

Type

Data Breach

Impact

credit/debit numbers

Data Breach

credit/debit numbers

References

Blog URL Source URL

Frequently Asked Questions

What is the current A.I Rankiteo Cyber Score for Gap Inc. ?

According to Rankiteo, the current A.I.-based Cyber Score for Gap Inc. is 733, which corresponds to a Moderate rating.

What was Gap Inc.’s A.I Rankiteo Cyber Score in November 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for November 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in October 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for October 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in September 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for September 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in August 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for August 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in July 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for July 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in June 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for June 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in May 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for May 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in April 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for April 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in March 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for March 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in February 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for February 2025 was 796.

What was Gap Inc.’s A.I Rankiteo Cyber Score in January 2025 ?

According to Rankiteo, the A.I. Rankiteo Cyber Score for January 2025 was 796.

What is the average per-incident point impact on Gap Inc.’s A.I Rankiteo Cyber Score over the past 12 months ?

Over the past 12 months, the average per-incident point impact on Gap Inc.’s A.I Rankiteo Cyber Score has been -64.0 points.

Where can I access detailed records of all cyber incidents associated with Gap Inc. ?

You can access Gap Inc.’s cyber incident details on Rankiteo by visiting the following link: https://www.rankiteo.com/company/gap-inc-.

Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?

You can find the summary of the A.I Rankiteo Risk Scoring methodology on Rankiteo by visiting the following link: Rankiteo Algorithm.

Where can I view Gap Inc.’s profile page on Rankiteo ?

You can view Gap Inc.’s profile page on Rankiteo by visiting the following link: https://www.rankiteo.com/company/gap-inc-.

How accurate is the A.I Rankiteo Risk Scoring methodology ?

With scores of 18.5/20 from OpenAI ChatGPT, 20/20 from Mistral AI, and 17/20 from Claude AI, the A.I. Rankiteo Risk Scoring methodology is validated as a market leader.

Badge your company to reduce your risk score and your cyber insurance costs!

Gap Inc. Company CyberSecurity Posture

Gap Inc. A.I CyberSecurity Scoring

Gap Inc.

DECEMBER 2025

Gap Data Breach Involving Sensitive Personal and Health Information

NOVEMBER 2025

OCTOBER 2025

SEPTEMBER 2025

AUGUST 2025

JULY 2025

JUNE 2025

MAY 2025

APRIL 2025

MARCH 2025

FEBRUARY 2025

JANUARY 2025

JANUARY 2010

Gap Inc. Data Breach

Frequently Asked Questions