UPDATE (16/04/2024): We have continued to monitor and investigate the issue we had with false accounts being made. We have decided to remove the creation of new accounts for visitors, as there is no advantage to having an account until a purchase has been made. Accounts can now be set up during checkout, so customers can continue to access their orders and receipts.
As mentioned in our original post, and confirmed during further investigations, no data has been compromised on our website servers.
—
Dear Valued Customer,
We are writing to inform you about an issue that has come to our attention regarding account registrations on our website. It has come to our notice that some accounts were registered using email addresses without explicit permission from the owners. We sincerely apologise for any inconvenience or concern this may have caused.
We want to assure you that no personal information was provided to us during these unauthorised registrations. However, we take data privacy and security very seriously, and we understand the importance of ensuring that your information is handled with care and respect.
In light of this situation, we are taking proactive measures to address the matter. If you believe that an account has been registered using your email address without your consent, please reach out to us at beleza@beleza.com.au, and we will promptly assist you in resolving the issue. Additionally, we will be conducting a thorough review of all accounts created in the last two days between 12:00 AM and 6:00 AM. Any accounts that fall within this timeframe and have not placed any orders will be assumed to have been falsely made and will be deleted pre-emptively.
For any customers currently registered, there is no evidence to suggest that any accounts already registered were breached. This appears to be a specific scam involving false account registrations, rather than any attempt at stealing existing personal information. Rest assured, we use a high level of encryption and website data protection on all accounts, and do not store any personal information ourselves.
If you would like to see if your account has been breached on other websites you have registered on, we would highly recommend visiting Have I Been Pwned and entering your email there. “Pwned” is internet slang for cyber breaching, and this website will let you know if your information has been stolen from various website.
Again, we apologise for any inconvenience this may have caused, and we appreciate your understanding and cooperation as we work to ensure the security and integrity of our services. If you have any further questions or concerns, please do not hesitate to contact us.
Sincerely,
Matthew CW
Beleza Website Administrator