Domino's Australia has blamed a system "issue" of a former supplier for the leak of customer personal information, which has left pizza lovers spammed with dodgy emails.
The pizza giant has called in the Australian Information Commissioner to investigate the breach but insists their systems haven't been compromised.
Instead, they blame a "former supplier's systems" for leaking customer email addresses, names and store suburb.
"Domino's acted quickly to contain the information when it became aware of the issue and has commenced a detailed review process," an undated statement posted on the company's website reads.
Domino's statement about the leak of personal information. pic.twitter.com/1s87ft3T7z— Chris Paine (@chrisreespaine) October 18, 2017
The company did not say when it first became aware of the issue and insists no financial information has been accessed.
It follows customer complaints on social media about the "eerie" personalised emails and the lack of communication from Domino's Australia.
"It was a bit eery (sic) getting all these spam emails that somehow knew my name and suburb and initially were making it past the spam filter," Mitchell Dale posted on Domino's Facebook page.
"The decision to try to keep me in the dark and not announce what had happened is why I will not be ordering Dominos again."
Interesting Reddit post on r/australia: If you've ordered with Dominos, your personal data's been stolen https://t.co/UXuGNADlK2— Tim Burrowes (@mumbrella) October 17, 2017
"Nothing better than waking up finding out your data has been breached," Dylan James posted on Facebook.
"Why haven't you informed anyone yet?"
"I won't be ordering from you again, not because of the breach but because of how you chose to handle it," Lara Douglas posted.
Mandatory data breach notification laws will come into effect in February 2018, meaning organisations like Domino's will have to notify customers of any data breaches.
In the meantime, Cybersecurity Assistant Minister Dan Tehan says the public should watch for suspicious messages, links and attachments.
"You should always be suspicious of unsolicited emails requesting personal or financial information," he told AAP.
Domino's Australia says it ceased working with the former supplier in July.