Data leak
Renault / Dacia UK Third-Party Vendor Breach
Primary Source βIncident Details
Renault and Dacia UK disclosed in October 2025 that a third-party vendor had been compromised, exposing data for UK customers. Exposed information included customer names, gender, phone numbers, email addresses, postal addresses, and vehicle identification numbers (VINs). The breach was reported to the ICO. Renault/Dacia UK notified affected customers directly.
Technical Details
- Initial Attack Vector
- A third-party vendor used by Renault and Dacia UK was compromised, exposing customer personal data including vehicle identification information
Timeline
- 2025-09-01 Breach occurred
- 2025-10-15 Publicly disclosed
- 2025-10-15 Customers notified