Louis Vuitton is facing growing concern in Hong Kong after a data breach exposed sensitive personal details of around 419,000 local customers.
The city's privacy watchdog announced Monday that it is officially investigating the incident, which came to light weeks after a similar cyberattack on the luxury brand in South Korea, Reuters said.
According to Hong Kong's Office of the Privacy Commissioner for Personal Data (PCPD), the leaked information includes customer names, passport numbers, birth dates, addresses, phone numbers, email addresses, shopping histories, and product preferences.
The PCPD is currently looking into whether Louis Vuitton Hong Kong failed to report the breach in a timely manner. So far, no formal complaints or public inquiries have been filed, the office said.
The breach was discovered by Louis Vuitton's headquarters in France on June 13 after noticing suspicious activity in its computer systems.
It wasn't until July 2 that the company confirmed Hong Kong customers had been affected. The local branch officially reported the incident to authorities on July 17.
🔍 Hong Kong investigates a Louis Vuitton data leak affecting 419,000 customers. Key concerns include delayed notification and the extent of compromised data. #DataPrivacy #Cybersecurityhttps://t.co/tCZbbYtMss
— Global Banking & Finance Review (@GBAFReview) July 21, 2025
Read more: What is Medusa Ransomware? Here's Why US Authorities Are Warning Different Industries to be Vigilant
No Payment Info Leaked in Louis Vuitton Cyberattack, Sources Say
Louis Vuitton has not yet responded to requests for comment regarding the leak. However, local media reports, including Ming Pao, have cited company sources saying that no financial or payment details were involved in the data exposure.
This is the latest in a series of cyberattacks targeting the luxury brand in recent months.
In June, Louis Vuitton Korea suffered a breach that leaked some customer data, though the company stated at the time that financial information was not compromised.
According to MoneyControl, other LVMH-owned brands, including Christian Dior Couture, also reported cyber incidents earlier this year.
The PCPD said it will continue to investigate the Hong Kong case thoroughly. One area of focus will be whether there was any delay in alerting the proper authorities and affected customers.
Under Hong Kong privacy laws, companies are expected to report serious data breaches as quickly as possible.
For now, customers in Hong Kong are left waiting for clear answers. Many may not even know their personal information has been exposed.
Louis Vuitton, one of the world's most recognized luxury labels, is part of the larger LVMH Moët Hennessy Louis Vuitton group.
Join the Conversation