Industry alert: Be aware of phishing scams that use GDPR as bait

May 16, 2018

Several reports have recently emerged of email phishing campaigns attempting to lure business personnel to websites soliciting business and personal financial information. This latest campaign is related to the approaching May 25th deadline for GDPR (General Data Protection Regulation) compliance.

There have been various reports where hackers are impersonating well-known companies to send fake emails warning about imminent changes to privacy settings in an attempt to spread malware or steal personal data.

Knowing that users of technology solutions are expecting opt-in mailing list requests from major vendors and providers, it seems that the phishing campaign authors are hoping to capitalize on this as well.

Protecting client data from malicious activity is a top priority for ADP.
If you ever receive a suspicious email that appears to be from ADP, follow the instructions below to report it:

  • Do not click on any links or open any attachments within the message.
  • Forward the email as an attachment to
  • Delete the email.
  • If you clicked any link or opened an attachment in the email, immediately contact your IT support team for further action.

Additional Information
For more information about how ADP protects our clients, please visit the ADP Trust Center at  which provides the latest security alerts, phishing information, security resources and best practices. Protecting ADP clients and their data from malicious activity has been, and always will be, a top priority for ADP.