GNV has been the victim of a cyber-attack

Genoa, 23 September 2019 – GNV reports that it has been the victim of a sophisticated cyber-attack that has led to a breach of confidentiality regarding the personal information of a number of passengers, credit card holders and persons in whose name reservations were made, who purchased tickets on the company website. Enquiries carried out with the support of independent professionals have ascertained that a cyber-attack took place in the period from 25 June to 18 July 2019.

Following reports of suspicious transactions from a number of payment circuits, detailed and in-depth enquiries were promptly set up regarding the dynamics of the attack. The results of the enquiries highlighted unauthorised access carried out by unidentified persons to certain personal information and, in some cases, to data regarding credit cards used for transactions on the website.

GNV informed the Italian Data Protection Authority of the breach and also immediately implemented measures to respond to the breach and prevent a similar attack from taking place in the future.

In an effort to best guarantee its customers the best possible assistance, GNV has set up both a telephone contact line (+39 010 2094599 - from 8 a.m. to 9 p.m., seven days a week) and an email address (dataprotection@gnv.it). GNV is also contacting any persons potentially involved in order to provide all the necessary information.

GNV deeply regrets the cyber-attack, but above all the potential inconvenience that this attack may cause. The protection and the security of the privacy of those using GNV services is in fact a crucial element in the Company’s business culture.

In this light, GNV is evaluating the appropriate legal action to take against the persons responsible.