The Information Commissioner (ICO) has warned high street and online shoe retailer after the personal data of over one million customers was left exposed due to a hacking incident. The database was due to be decommissioned and was unencrypted. The ICO held that the breach had highlighted two areas of importance, the unnecessary storage of older personal data and the inadequate security to protect personal data. The company has signed an undertaking to address the issues of data protection.