At the end of October, we were informed that Sennheiser data was visible on the Internet. We closed this security gap immediately as soon as we learned of it. At that time, we were under the impression that no personal data was involved.
To our great regret, however, we learned in the meantime that contact information for some of our customers was accessible on the Internet in a cloud folder that was used for temporary data backup. This contact information (first and last name, address, and e-mail addresses as well as telephone numbers) was originally provided to register for our newsletter and for participation in online competitions. At the end of last week, we therefore immediately complied with our duty to inform the data security authority of the state of Lower Saxony.
Although as of today we have no indication that the data from the cloud folder was accessed by third parties, we are working hard to reconstruct all details of the incident and notify potentially affected customers as soon as possible.