THE Carlton Football Club has recently been made aware that a survey tool we use through a technology provider has been subject to a data hack.

The Carlton Football Club uses this survey tool regularly to ask members about various topics from match day and member experiences to upcoming events. The company we use is IO Media, and they use a survey platform delivered by Typeform. Typeform was the company that experienced the security breach.

The breach has impacted approximately 1,300 Carlton Football Club accounts. No financial or credit card details have been affected by this incident.

An unauthorised person gained access to files containing AFL and certain Club survey responses and personal information relating to account IDs, name, email and phone number information provided by survey respondents.

No financial information or credit card details have been affected by this incident.

We have also confirmed that the password(s) you have used to access your Carlton Football Club account have not been affected or disclosed by this incident.

Whilst it is not possible for us to determine whether your personal data may have been accessed without authorisation, we are providing you with this notice so that you can assess the consequences of this incident and take action to protect your information

If you are concerned that your data may have been compromised we suggest the following:

• change passwords on other online services, if the same or similar password has been used in those other services as was used in this Carlton Football Club account (but noting again that passwords have not been affected or disclosed by this incident);
• enable multi-factor authentication and other available security measures provided by your other online services;
• be alert of potential phishing emails and telephone calls from anyone requesting your personal details, and avoid opening attachments from unknown senders on any virtual platform;
• install or update anti-virus software and keep it updated; and
• apply recommended software patches from operating system and software providers.

For general information about how you can you protect your data privacy, visit the Australian Competition and Consumer Commission website.  

For further steps you can take, we also recommend that you visit the Office of the Australian Information Commissioner's website.

Where should I go for more information in relation to this security incident?

Further information about the security incident has been published by Typeform here.

We apologise for any inconvenience caused and assure you that the Carlton Football Club takes the security of your data very seriously.

We are working with our IT providers to better understand this incident and the measures taken to prevent this issue in the future.

We appreciate that you may have additional questions. If so, please contact us at privacy.officer@carltonfc.com.au.

We are committed to making your football experience better. Contact us via email at membership@carltonfc.com.au or phone 1300 227 586.

Yours sincerely,

Carlton Membership Team