4 april 2023

It is suggested on various Social Media channels that data has been leaked at PrismaNote. Research has shown that this does not concern information from current users (nor 100,000 customers), but that it concerns an export from a demo store. The person in question had access to this account because, as a jeweler, he has expressed an interest in using the system. Further research has shown that a total of 4 people were able to see this information. It has also been determined that 1 download has been made.

If you use PrismaNote, your data is not in danger and you do not need to take any further action.

PrismaNote apologizes for causing this unrest. We find it annoying to have to hear this news via Social Media instead of personal contact with the reporter. Mainly because the privacy of customer data could have been compromised and we take the security of this very seriously.

We have taken the following actions since the online messages (on Monday evening, April 3, 2023):

Because the seriousness of the situation was not immediately clear to us, no user had access to his customer data from 21:42 to 23:28. The customers have been removed from the demo account. The login of the person in question has been deactivated .The reporter has been contacted several times without result.

We would still like to get in touch with the reporter to destroy the downloaded file. In addition, we point out our 'Bug Bounty Program', with which we reward the discovery of potential dangers.

We have also registered this event in a data breach register and it will be recorded internally how this situation could have been prevented. A 'confidentiality breach' will also be reported to the Dutch Data Protection Authority.

Do you have further questions? Feel free to contact us via data@prismanote.com or call 31 88 20 22 522.