Notice Date: February 13, 2026

Notice of Data Security Incident

On January 20, 2026, Tulsa Airports Improvement Trust (TAIT) determined that an unauthorized third party accessed and acquired certain files from our computer system between January 17, 2026 and January 20, 2026. Upon discovery on January 20, 2026, we immediately took steps to secure our network and retained a leading cybersecurity firm to launch a forensic investigation and mitigation effort. We also notified law enforcement and will cooperate with any investigation.  While our investigation remains ongoing, we are confident that we have secured our computer systems at this time.

What information was involved

Some of the affected files contained personal identifiable information (“PII”) in the form of names in combination with one or more of the following: addresses; phone numbers; Social Security numbers; driver’s license or other unique government‑issued identification numbers; and routing and financial account numbers. Not every data element was involved for every affected individual.

What we are doing

We took immediate steps to contain the incident and are implementing additional and/or enhanced reasonable safeguards, including risk assessments, technical and physical layered defenses, employee training, and updates to our TSA-approved incident response plan. We have also enhanced monitoring to help prevent a recurrence. TAIT utilizes industry-standard security solutions to support threat detection, network monitoring, government-supported cyber protection, and multi-factor authentication for system access.

What you can do

Out of caution, we recommend that you:

• Monitor your account statements and credit reports for suspicious activity.
• Consider implementing a fraud alert or credit freeze with the major credit bureaus.
• Be cautious of unsolicited communications asking for personal information.

As our investigation remains ongoing, additional information may be posted here as it becomes available.