Parks of Croatia
EU projects
English
Dear Guest,
We would like to inform you about a personal data breach affecting the hotel reservation management system we use.
Most importantly: your payment card data has not been affected.
What happened?
An unauthorized third party gained access to part of the hotel reservation management system.
Based on the information currently available, the following data related to your reservation may have been affected:
- First and last name
- E-mail address
- Postal address
-
Reservation details, including:
- Reservation number
- Dates of stay
- Property name
According to the findings available so far, the database itself has not been compromised and the system remains safe to use.
Your reservation remains valid and you do not need to make any changes regarding your booking.
What does this mean for you?
As this information may have been accessed by an unauthorized third party, there is a risk that someone may attempt to contact you while falsely claiming to represent our property or one of our partners.
Such attempts have already been reported.
The purpose of these fraudulent communications is typically to:
- persuade you to authorize a payment or transfer funds;
- obtain your payment card information.
How can you recognize a fraudulent message?
Such messages may be sent by e-mail, WhatsApp, or similar communication channels.
To appear legitimate, they often include genuine reservation information such as:
- Your name;
- Your reservation number;
- Your stay dates.
They frequently claim that your reservation will be cancelled within 24 hours unless you immediately make a payment or confirm your details.
They may also direct you to a website where you are asked to enter your payment card information.
This is not how we communicate with our guests.
What we ask you to do
Please:
- Do not open links contained in such messages.
- Do not enter payment card information.
- Do not make payments based on such requests.
- Do not respond to these messages.
- Do not share your personal information.
If you are unsure whether a message is genuine
Please contact us directly using our official contact details:
or using the contact information provided in your original reservation confirmation.
We will be happy to verify the authenticity of the message.
Please note that we never request payment or confirmation of payment card details through a link contained in a message.
If you have already responded to such a message
If you have already entered your payment card details or made a payment in response to such a message, please contact your bank or card issuer immediately.
Report the fraud, request a chargeback or refund where applicable, and ask about any additional protective measures available to you.
The sooner you act, the greater the likelihood of preventing or minimizing damage.
What have we done?
As soon as we became aware of the incident, we worked with the reservation system provider to immediately restrict unauthorized access and further secure the system.
We have also:
- Engaged external cybersecurity specialists to investigate the circumstances and scope of the breach;
- Implemented additional security measures to prevent similar incidents from occurring in the future.
We continue to monitor the reported fraudulent activities and will keep you informed of any important developments.
Contact
For any questions regarding this notice, please contact:
We sincerely regret any inconvenience this situation may cause and thank you for your understanding.
Kind regards,
Public Institution Brijuni National Park
