Alan Osrin, managing director of Sage Australia, told AccountantsDaily that the software provider is currently investigating unauthorised access to customer information using an internal login.
Earlier this week it was reported by various outlets, including the BBC and the UK's The Telegraph, that Sage was probing the unauthorised access, with authorities unclear as to whether the data had been stolen or merely viewed.
The Information Commissioner’s Office (ICO), the body responsible for enforcement of the UK Data Protection Act, has been informed of the breach.
Criminal prosecution or civil enforcement at the hands of the ICO are two penalties that could flow from a finding of possible negligence on behalf of Sage.
Sage has notified the businesses whose data may have been accessed and advised them to look out for any unusual activity.
“We cannot comment further whilst we work with the authorities to investigate – our customers remain our first priority and we are speaking directly with those affected,” Mr Osrin said.