Response to media query: MSG cyber incident

“We can confirm that MSG submitted a personal data breach report to us on 8th December, in accordance with the requirements of section 42 of The Data Protection (Bailiwick of Guernsey) Law, 2017. We are awaiting an update from MSG on their internal assessment of the breach. In recent weeks we have had a number of similar cyber incidents reported to us, so this is a timely reminder for all businesses and organisations to think carefully about their own data security, and their readiness to respond to an incident like this. Anyone who is concerned about this incident is encouraged to talk to MSG in the first instance.”

UPDATE: 30 March 2022
On 29 March MSG issued a 'cyber-warning' following the initial incident reported in December 2021, we were again approached to comment. Our response is as follows: 

“This appears to relate to a breach that occurred on 7th December 2021. In publishing an update, MSG seem to be taking steps to ensure those individuals who were affected are advised of any associated risks. In accordance with the legal obligations in the data protection legislation, MSG reported the breach to the ODPA on 8th December 2021 and it remains the subject of our enquiries. If anyone is concerned about the impact the breach may have had on them, we would encourage them to contact MSG in the first instance.”