Ouidad is committed to protecting the personal information provided to us by our customers. However, cyber attacks are one of the unfortunate realities of doing business today. Regrettably, we only recently were alerted that our Company was the victim of an illegal data security attack by sophisticated criminals between the dates of June 30 and July 4, 2013. Based on our ongoing review, we believe that the attackers may have gained access to the Ouidad customer database, possibly compromising Ouidad account information for many of our customers.
It appears the attackers may have obtained or viewed information about one or more transactions certain customers completed at Ouidad.com including first and last name, credit card number, credit card security code and expiration date, billing address, email address, and phone number. We have attempted to contact all affected customers via letter and recommend everyone carefully review credit card statements, account activity, and credit reports to identify any unauthorized charges and otherwise help protect the security of those accounts.
Upon learning of this incident, we immediately engaged leading security experts and have already implemented changes designed to protect your information from any further unauthorized access. We would like to stress that Ouidad deeply regrets any inconvenience this attack on our systems has caused anyone. We value our relationship with our customers and the trust placed in us. We are committed to providing exceptional service to our customers and are dedicated to delivering the highest quality products. We are working extremely hard now to implement changes designed to protect all private information from future attacks.
One of the company�s servers was the target of an illegal data security attack, by sophisticated criminal internet hackers. These intruders gained unauthorized access to the Ouidad customer database.
We became aware of the attack in late September. The attack itself occurred between June 30 and July 4th, 2013.
It appears that the attackers may have viewed, or obtained information about one or more transactions that you completed at Ouidad.com. This included your first and last name, credit card number, expiration date and security code, billing address, email address, and phone number.
When a customer shops at ouidad.com, the information required to process an order, and potentially be used for a return, is maintained in a customer database.
Upon the discovery of a possible attack, we were required by law to notify the appropriate governmental agencies and the credit card companies. We also immediately engaged a leading outside security team, to help us understand the nature of the attack, and to secure the information and help implement changes to further protect against any additional outside attacks. Once we completed the required security steps, we notified our customers.
Unfortunately, there were other customers affected by this security breach.
This is all the information that we have currently.