We are getting in touch with you regarding an AA Traveller website security incident

Can't view this email? View online

Your reference ID: TVZAXEQQ
AA Traveller

Kia ora, 

We’re very sorry, we have discovered that some personal information that was provided to AA Traveller a while ago, in 11/2008, has been compromised in a security incident.

We understand how concerning this may be for you.

What we are doing

Since becoming aware of the issue, we immediately moved to remedy the vulnerability and have been working with cyber security advisors to investigate this situation.

We’d like to assure you that we are doing everything we can to continue to strengthen our security practices and to protect your personal information by improving our information security frameworks.

What happened

Up until 2018, AA Traveller operated a commercial website that enabled customers to make travel bookings, enter competitions, take part in surveys and receive travel related newsletters.

Unfortunately, we recently discovered that there was a vulnerability in the application where the AA Traveller website information was stored, and that an unauthorised party accessed information within the database used. Information that was provided to AA Traveller in the past was stored on this system and has unfortunately been accessed. We have not identified any party suspected of having this information.

Please know that when this came to our attention, we moved quickly to notify the Privacy Commissioner, took steps to address our security, and got in touch with those affected as soon as we could safely do so. The vulnerabilities have been addressed and the personal information on this system has been secured.

What information was exposed

The information that was compromised included:

  • your name
  • email address
  • address

 

What should you do

You should also continue to be safe online by not responding to any emails or social media communications that you consider suspicious or calls from numbers you don’t recognise. You can check that the sender or caller is who they say they are by checking official company websites. AA Traveller will never ask you for your password.

You can report any suspected fraudulent activity to government cyber security watchdog, CERT NZ at www.cert.govt.nz/report-an-issue.

There are some good resources available to you through Netsafe NZ and Cert NZ for more information on how to protect yourself online.

Please be assured that keeping AA Members’ and our customer’s data safe is of the utmost importance to us here at AA Traveller and that we have strengthened our security as quickly as we can.

For more information

If you have any further questions, please visit our website to read the FAQs at www.aa.co.nz/aatravellerfaqs, or you can visit the AA Traveller customer portal at www.aatravellersupport.co.nz, to understand more about the information accessed and what to do next. If you would prefer to speak to someone, please call 0800 500 050 between Monday and Friday, 8am to 6pm and quote your reference ID: TVZAXEQQ.

If you have a complaint, please contact us and we will assist as best we can. You also have the right to make a complaint to the Privacy Commissioner.

Again, we sincerely apologise for this situation.

Ngā mihi

Greig Leighton 
General Manager
AA Travel and Tourism

 

 
This email was sent by The New Zealand Automobile Association Incorporated, Level 16, 99 Albert Street, Auckland. You can verify this by calling toll free 0800 500 4440800 500 444 within New Zealand or +64 9 966 8800+64 9 966 8800 if overseas.
© The New Zealand Automobile Association Incorporated 2022. All rights reserved. View our Terms and Conditions or Privacy Policy.