Volusion, LLC (“Volusion”) has become aware of a data security incident that may have involved the personal information of some of the customers of our merchant clients. Notification is being sent directly to the potentially impacted individuals identified to provide information to assist them.
On or about October 8, 2019, Volusion learned that the personal information of some of the customers of our merchant clients may have been improperly exposed as a result of malware placed on Volusion’s e-commerce platform. Immediately after learning this, Volusion secured the platform, removed the malware, notified the FBI, began an investigation, and engaged an independent forensic investigator and a qualified Payment Card Industry Forensic Investigator (“PFI”). On March 20, 2020, following a thorough PFI investigation, Volusion confirmed that personal information input by some customers of our merchant clients may have been improperly exposed while making purchases on Volusion-hosted websites between September 7, 2019, and October 8, 2019.