Your browser is no longer supported. For the best experience of this website, please upgrade to a newer version or another browser.

Your browser appears to have cookies disabled. For the best experience of this website, please enable cookies in your browser

We'll assume we have your consent to use cookies, for example so you won't need to log in each time you visit our site.
Learn more

Office receives ICO warning about data protection

Office has signed an undertaking committing to address issues of data protection.

The Information Commissioner’s Office (ICO) has given the footwear retailer a warning after personal data of over one million customers was left exposed due to a hacking incident.

The hacker managed to gain the potential to access customers’ contact details and website passwords via an unencrypted database that was due to be decommissioned. The hacker bypassed technical measures the company had put in place and the incident went undetected, according to the ICO.

Office has now signed an undertaking to ensure issues around the data breach are resolved.

“All data is vulnerable even when in the process of being deleted, and Office should have had stringent measures in place regardless of the server or system used,” said Sally-Anne Poole, group manager at ICO. “The need and purpose for retaining personal data should also be assessed regularly, to ensure the information is not being kept for longer than required.”

“Fortunately, in this case there is no evidence to suggest that the information has been used any further and the company did not store any bank details.”

Office has agreed to address the issues of data protection and has already decommissioned the servers in question and implemented a new hosting infrastructure.

Have your say

You must sign in to make a comment

Please remember that the submission of any material is governed by our Terms and Conditions and by submitting material you confirm your agreement to these Terms and Conditions. Links may be included in your comments but HTML is not permitted.