Pick n Pay has confirmed a significant data breach affecting its delivery service app users, revealing sensitive personal information.
Image: Supplied.
Pick n Pay has confirmed that its delivery service has been affected by a data breach. In a message to its app users, the retailer said those who registered for the on-demand app on or before 2022 may be among those affected by the data breach.
Information breached includes names, contact details, and personal details like home addresses and bank card information.
"The affected data comes from an earlier version of our on-demand app, first known as Bottles and later as Pick n Pay asap!, which has since been replaced," the email stated.
"The records in the dataset date from 2022, and the dataset has only recently been identified online," the mail added.
The retailer said full payment card numbers and CVVs were not affected as they are not stored on the system.
"This means the leaked data cannot be used to make fraudulent transactions on customer cards," Pick n Pay said.
Clients are asked to change their passwords, be cautious of unexpected calls, messages or emails referencing your personal details, especially where the caller knows information about you.
The retailer said it is conducting a full investigation with an independent cybersecurity firm.
"We will also review and strengthen the way we manage and retain historical customer data; providing a dedicated support channel for any questions you may have," Pick n Pay said.
Affected clients can contact asapgrocery@pnp.co.za or 086 099 6727 (available Monday to Sunday, 8am to 8pm) for more information.