Overview
- Basic-Fit said attackers briefly accessed its visit-registration systems and downloaded member data before the company blocked the intrusion within minutes.
- The exposed information includes names, email and postal addresses, phone numbers, dates of birth, bank account numbers and holder names, plus payment records, member identifiers, recent club visits and phone model descriptions.
- The company said no customer passwords or copies of identity documents were accessed.
- Basic-Fit reported the incident to the Dutch data protection authority, emailed affected members, and published an FAQ with support contacts.
- The breach touches clubs in Spain, France, Germany, Belgium, Luxembourg and the Netherlands, and consumer groups are urging members to watch for phishing and check bank accounts for unauthorized charges.