SunTrust Banks reported today the potential theft of information from some of its contact lists by a former employee. The Atlanta-based bank released a press statement saying it’s notifying 1.5 million customers that information – including names, addresses, phone numbers and account balances – may have been exposed.

The contact lists didn’t include Social Security numbers, account numbers, personal identification numbers (PINs), user IDs, passwords or driver’s license information, according to SunTrust.

The company is offering free identity protection to customers who sign up and said it’s coordinating with police.

“We apologize to clients who may have been affected by this,” SunTrust Chairman and CEO Bill Rogers said in the press release, adding the bank has not detected “significant fraudulent activity.”

A SunTrust spokeswoman declined to comment further.