In May 2025, Adidas disclosed that a data breach had occurred via an unnamed third-party customer service provider. The breach exposed customer contact information including names, email addresses, phone numbers, dates of birth, and home addresses. Adidas stated that no payment information or passwords were compromised. The company notified affected customers and relevant data protection authorities. The breach underscores the recurring risk of consumer brands storing customer data with third-party support vendors that may have weaker security controls.