What happened
In September 2022 the online wine retailer Vinomofo suffered a breach exposing customer personal information [vino-db]. In 2025 the Privacy Commissioner determined Vinomofo had breached Australian Privacy Principle 11.1 by failing to protect the data, and put the number affected at about 928,760 [vino-oaic]. Vinomofo had publicly described roughly 500,000 customers as at risk in 2022 [vino-db].
Current status
Resolved by determination. The 928,760 figure is the regulator’s; the company’s earlier ~500,000 figure is noted for context [vino-oaic], [vino-db].
Why it matters
A regulator determination naming a specific failure and figure is exactly the kind of official record this register is built on — confirmed fact, not estimate.