The Data Protection Commissioner has said it is disappointed that a data breach at Paddy Power that affected 120,000 Irish customers was not reported to its office sooner.
The customer information was accessed during a breach in 2010, which included their name, address, date of birth, email address and contact number.
Paddy Power says no financial information was accessed and accounts were not affected.
The Office of the Data Protection Commissioner said Paddy Power knew of the breach in late 2010, but only reported it to them in May this year after an investigation.
The office has expressed its disappointment to the company that the breach was not reported in 2010.