Uponor
Potential personal data breach following cyber attack against the Group

Important information to former Uponor employees

On 5 November 2022, Uponor was subject to a cyber attack impacting its operations in Europe and North America. Uponor took immediate action to investigate and remediate the situation. A press release related to the matter was published on 7 November 2022 and on 18 November 2022.
 
Based on the investigations, there is an indication that Uponor UK employee’s personal data may have been breached, this involves only data saved up to, and including August 2016. Unfortunately, this may also affect former Uponor employees’ personal data if the employee has been employed by an Uponor company in the UK before 1 September 2016. There is no immediate evidence that personal data has been published into the public domain, but this is a potential risk.

Uponor is working tirelessly to restore the security of the affected data and to monitor any developments in the matter.

With this communication we notify all persons who have worked in an Uponor Group company in the UK before 1 September 2016 of a personal data breach due to the cyber attack. The breach relates to the personal data processed by Uponor during the employee’s employment for the purpose of managing the employment relationship.

In the event the data becomes available in the public domain, as a result of the cyber attack, we advise you to protect your personal data from being used maliciously, by following the instructions we will publish in the coming week on local Uponor websites.

If you have further questions on the breach or on protecting your personal data, please contact privacy@uponor.com.