Rituals Cosmetics Discloses Customer Data Breach
Dutch cosmetics giant Rituals has announced a data breach affecting its "My Rituals" membership database. An undisclosed number of customers had their personal information stolen.
Summary of the Incident
On April 23, 2026, the popular Dutch-based cosmetics brand Rituals publicly disclosed a cybersecurity incident. According to a statement from the company, cyberattackers breached the database of its "My Rituals" loyalty program and stole customer information. Rituals has not shared an exact number of customers affected by the breach but stated that it has begun the process of notifying those impacted. This event is a significant entry in recent Data Breach News.
Exposed Data
Rituals published a detailed list regarding the nature of the information accessed by the attackers. It was confirmed that the following personal data belonging to customers was stolen in the breach:
- Full names
- Email addresses
- Phone numbers
- Mailing addresses
- Dates of birth
The company specifically emphasized that financial data, such as credit card information or payment details, was not affected by this breach. It was also clarified that no passwords were stored in the compromised database.
Has your email been leaked? Check for free — results in seconds.
Check Now →What Should Affected Users Do
Rituals advises customers affected by the breach to take several precautions. Firstly, be vigilant about suspicious emails sent to the address associated with your Rituals account. Such emails are often used for phishing attacks, aiming to steal your personal information or passwords. Additionally, you can use a Data Breach Search tool to check if your data has been exposed in other breaches. The company announced it will continue to share updates on the situation through its official channels.