But Quote me happy said that no sensitive personal data, such as bank or card details, had been accessed
Aviva’s online car insurance business Quotemehappy has revealed that it has suffered a data breach to its website.
In an email yesterday, customers were informed of a recent incident when a small number of Quotemehappy.com customers were able to view personal information of another customer when accessing the ‘My account’ section of the Quotemehappy.com website.
The personal information comprised vehicle registration, email address, mobile number, landline number and address.
The breach is thought to have been caused by a technical error at the site. The email added that it was “not possible” for customers to change each others’ information.
The email was signed by company director Owen Morris, who apologised for the incident, The Register reports.
But Morris stressed that no sensitive personal data, such as bank or card details, had been accessed or disclosed.
An Aviva spokesperson said: “Quotemehappy.com has identified an incident where a small percentage of customers were able to see another customer’s contact details, such as name, address and telephone number, when they logged into their account. These details could not be changed and no sensitive, personal or financial, information could be viewed or accessed.
”We are sorry that this has happened and for any inconvenience or worry this may have caused. The issue has now been fully resolved and we have contacted all impacted customers to explain the situation and have notified the FCA and the ICO [Information Commissioner’s Office].”
An ICO spokesperson said: “We’re aware of an incident involving Aviva and are making enquiries.”