- It collected customer information for membership registration 和 maintained two separate databases: 上e for 上line registrations 和 another for registrations in person at its retail outlets.
- 作为其营销活动的一部分，Bud Cosmetics向其客户发送了带有最新促销优惠和产品的电子通讯。此类电子通讯是通过根据某些条件从在线和离线数据库中选择成员的电子邮件地址而生成的。发送电子通讯后，该特定电子通讯的客户邮件列表将存储在一个存档文件夹中。
- An individual complainant discovered a URL link to a member list of 芽化妆品’ when she conducted a search using her name 上 the Internet. The list contained the names, dates of birth, contact numbers, email addresses 和 residential addresses of approximately 2,300 persons.
- The member list was located in the image folder for an e-newsletter that was sent out in 2012 和 hosted 上 a third-party server based in Australia. This system was hacked in 2012年4月. 芽化妆品 switched web hosting companies in 2013, 和 engaged a U.S. entity with servers located in Provo, Utah.