WORLDWIDE PLASTICS DISTRIBUTION
Vink business disruption event

We recently experienced a business disruption that caused for certain of our IT systems to be affected. The result has been that our customers and suppliers could not trade with us as they normally would.

While we are working on a solution, the following text serves a brief outline of the events that lead to the situation and the current status.

1. What happened?


On Sunday 29 November we were advised by our outsourced datacenter that we had become the victim of a ransomware attack.

2. What action was taken?


Vink systems were shut down immediately, and shall remain shut down until such a time that the environment can be rebuilt and released in a safe environment.

Vink conducted thorough forensic and cyber investigations to investigate the details of the breach and to determine the possibility of data leakage.
As at 11 December 2020 (being the first publication of this page), and to the conclusion of the cyber investigation (15 January 2021), the cyber investigation did not yield any indication of data leakage.

3. How can customers and suppliers communicate with Vink?


As a temporary measure Vink staff made alternative e-mail arrangements from November 30th onwards.
From the 3rd of December 2020 email traffic with original individual and shared e-mail addresses has been restored and gradually adopted by the different operations.

The use of attachments to external email-addresses up to now is however only released for Vink Belgium, Vink Spain, HSW Slovakia and Access Plastics Ireland.

4. How do customers and suppliers continue trading with Vink?


The following means of continued trade with Vink are currently open

As this situation changes we will notify suppliers and customers accordingly.

5. Have data subjects been informed?


Yes, email notifications have been sent to the relevant customers containing the wording as per this Customer Notification.

6. Is mail from Vink safe?


Yes, basic functionality has been restored across our ERP system and all communications via email including those with attachments are secure.
Please read our statement sent to relevant suppliers.

7. Most recent Status (as at 15 January 2021)


From 1 December 2020 up to 15 January 2021 Vink used professional service providers to investigate data being compromised as well as to monitor any event of data leak being announced. As at 15 January 2021 there has been no indication of data being compromised nor leaked.
Vink will now approach the various data authorities where the incident has been reported and request for the incidents to be closed as we have complied with the requirements of the GDPR in reporting the matter to data authorities, taking remedial action to prevent further damage, and communicating with data subjects as required.




The last publish date of this page is 20 January 2021.

Contact
If you have any further questions you can send an e-mail to dpo@vink.com with your questions and we will answer as soon as possible.

Top