Hong Kong-based apparel retailer Bossini says its database of loyalty programme members and online customers was hacked earlier this month.
The company says the information accessed without authorisation on or around June 3 included customers’ names, addresses, phone numbers, email addresses, gender, age range and month of birth.
“The leaked files do not contain any information on the identification card numbers and credit card numbers or payment information of these customers,” the company said in a statement released under the name of its chairman Bess Tsin.
“Upon discovery, we took immediate action to contain the event and commenced a detailed investigation with the assistance of a leading cyber security firm. With the steps taken, we believe that the data breach situation has been contained.”
Customers with concerns about the breach have been invited to email Bossini at the address firstname.lastname@example.org for further information.
Tsin said that for customers to complete a purchase on its website they are directed to a secure third-party payment gateway. No credit card information is stored by Bossini during any transactions either instore or online.
Bossini has reported the data breach to Hong Kong police.
“We will continue to monitor the security of our systems and take further steps as necessary and as of now, to the best of our knowledge and that of our cyber security adviser, we have substantially secured the company’s systems,” said Tsin.