top of page

Giant Tiger customer data compromised in incident with third-party vendor

Giant Tiger Stores Ltd. has revealed that some of its customers' contact information was compromised in what it terms as an "incident" tied to a third-party vendor it relies on.

Alison Scarlett, a spokesperson for the Ottawa-based discount retailer, refrained from disclosing the vendor's name but clarified that the company is instrumental in managing Giant Tiger's customer communications and engagement.

In response to a recent security issue associated with this vendor, Giant Tiger promptly initiated communication with affected customers, advising them to exercise caution when interacting with emails and phone calls.

Scarlett emphasized that the compromised data did not include any payment details or passwords. Additionally, she assured that the integrity of Giant Tiger's store systems and applications remains intact.

Despite the breach, Scarlett reassured customers that there is currently no evidence indicating the misuse of their information. However, she emphasized the company's dedication to swiftly and transparently resolving the incident.

Expressing regret over the occurrence of the incident, Scarlett emphasized Giant Tiger's ongoing commitment to implementing and adhering to robust security measures to prevent similar occurrences in the future.

"We deeply regret that the incident occurred and remain committed to employing best practices to prevent these types of incidents," she stated in an email correspondence with The Canadian Press.

The revelation underscores the challenges faced by companies in safeguarding customer data in an increasingly interconnected digital landscape. It serves as a reminder for businesses to continuously assess and fortify their cybersecurity protocols to mitigate risks associated with third-party partnerships.

As Giant Tiger works towards resolving the breach, customers are urged to remain vigilant against potential phishing attempts or suspicious communications. Additionally, the incident underscores the importance of exercising caution when sharing personal information online and staying informed about cybersecurity best practices.

In light of this incident, stakeholders may anticipate increased scrutiny surrounding data security practices, prompting organizations across various industries to reevaluate their vendor management strategies and cybersecurity frameworks.