LendInvest plc (LON:LINV) has confirmed a data breach.

The company was notified yesterday of certain customer and applicant personal data being accessible to persons outside of the company. The data itself was held within a specific project test environment and not within the company’s main systems. Investigations into the incident are ongoing and the precise number of individuals affected and the length of time that the information was compromised is to be determined.

Upon becoming aware of the incident, the team immediately took steps to remedy the breach, mitigate any further risk, and launched an investigation. The exposed data is no longer exposed, and there is currently no evidence that any personal information of any nature has been misused.

LendInvest says it has engaged specialist support services and has implemented its incident response plans as part of its ongoing investigations. The company is engaging with the relevant regulatory authorities, including the UK’s Information Commissioner’s Office (ICO), and the Financial Conduct Authority (FCA).