Information about data breaches

At Kvadrat, we take the security and privacy of our clients' and business partners' data very seriously. Despite our best efforts and robust security measures, minor data breaches can happen due to an increase in sophisticated attacks.

We understand the importance of transparency and will be publishing any incidents on this page going forward. Your trust is our top priority, and we are dedicated to ensuring that your information remains secure.

July 2025

Dear Client, Business Partner,

We wish to inform you of a recent data security incident involving Kvadrat Shade B.V and Kvadrat A/S, which occurred on 01 July and again on 02 July 2025.

A phishing email led to unauthorized access to a few of our employees’ Outlook email accounts. As a result, email correspondence in these accounts—including names, job titles, work email addresses, work phone numbers, and potentially other personal data contained in the email body—may have been exposed.

Upon discovery, we immediately secured the accounts and completed a full investigation. The incident was contained as best as possible shortly after detection.

Unfortunately, we have evidence of misuse due to the incident, you might have received a phishing attempt. We recommend that you do the following:

  • Be cautious of suspicious emails or messages.
  • Do not click on unexpected links or attachments.
  • Consider updating your passwords.
  • Report any suspicious activity to your IT department.

For more information, you can contact:
Christina Okholm, Legal Counsel (Kvadrat A/S)
+45 8953 1866
cokh@kvadrat.dk

We regret any inconvenience this may cause and are committed to safeguarding your information.

Sincerely,
Kvadrat IT and Legal & Compliance

October 2024

Dear Client, Business Partner,

Please be informed that there has been a small data breach in Kvadrat AG on 16 October 2024.

An external party has sent a fishing mail, the incident has resulted in access to one employees Outlook account.

The breach is limited to emails containing names, job titles, work phone numbers, work emails, and any personal data within those emails. Unfortunately, we can't determine which specific emails were affected. The external party had access for about 12 hours before the issue was resolved.

Even though the incident is now closed it is possible that the external party may target you using your personal data. 

You can reach out to Christina Okholm, Legal Counsel (Kvadrat A/S) on M +45 2239 4944 or cokh@kvadrat.dk if you need further information on the case.

Kind regards,
IT and Legal & Compliance