Insights·2 July 2026·10 min read
The Website You Built With AI Might Be Leaking Customer Data
AI makes it easy to build a website or app in a weekend — and just as easy to leak your customers' data. A plain-English security guide for New Zealand small businesses, and the Privacy Act rules you can't ignore.

There's never been a better time to build something. A café owner in Rangiora can stand up a loyalty app over a weekend. A plumber can have a "request a quote" form live by Friday. A physio can build an online booking and intake system without hiring a developer at all — just an afternoon, an AI tool, and a bit of nerve.
And most of the time, it works. The form submits. The booking lands in your inbox. The app looks the part. So you ship it, tell your customers, and move on to the next thing — because you're running a business, not a software company.
Here's the uncomfortable part. The thing working and the thing being safe are two completely different questions. AI is brilliant at making software that runs. It is far less reliable at making software that protects the people whose names, numbers and details you're now quietly collecting. And the gap between those two — runs versus protects — is exactly where a lot of New Zealand small businesses are about to get caught.
The demo works. That doesn't mean it's safe.
When you build with AI — or hire someone off a marketplace who builds with AI — you get something that passes the only test most people run: does it do the thing? Click the button, the booking appears. Great. Done.
What that test never shows you is what's happening underneath. Where is the customer data actually being stored? Who can reach it? Is it locked, or is it sitting in a database that's open to anyone who knows the address? Are the passwords protected, or saved as plain readable text? Are the secret keys that connect everything together tucked away safely — or written directly into the code where anyone can copy them?
AI-generated code has a well-earned reputation for getting these exact things wrong. It'll happily leave a database wide open, hard-code a password, or skip the checks that stop one customer from seeing another customer's details — all while the demo runs perfectly. It's not being malicious. It's giving you what you asked for ("make a booking form") without the part you didn't know to ask for ("...that doesn't leak").
None of this is visible from the outside. That's the trap. A leaky app and a solid one look identical to you, to your customers, and to everyone — right up until someone who is looking for the gap finds it.
The thing working and the thing being safe are two completely different questions.
What a breach actually looks like for a small business
Forget the movie version of a hacker — the hooded figure in a dark room, the dramatic countdown. That's not what happens to a Christchurch café. Here's what actually happens.
The open database. A café builds a loyalty app. It collects names, emails and phone numbers — a few thousand of them over a year. The database it all lives in was set up with its security switched off by default, and nobody turned it on. For eight months, anyone with the right web address can download the lot. Nobody notices, because nothing looks wrong. Then a customer emails: "Why did I get a scam text that knew my name and that I drink flat whites at your place?"
The freelancer's shortcut. A builder hires someone cheap online to make a quote-request form. To get it working fast, the freelancer writes the secret keys — the ones that connect to the email account and the AI service paying by usage — directly into the public code. Months later, someone finds them, and either runs up thousands of dollars in usage on the builder's account overnight, or quietly reads every enquiry that ever came through the form.
The intake form that holds too much. A physio's AI-built booking system asks new clients for injury details and medical history. That's sensitive information under NZ law — a higher bar. It's being stored in a simple spreadsheet-style database with no real access controls, sitting one weak password away from being everyone's business.
Notice what these have in common. No genius attacker. No sophisticated break-in. Just an ordinary business that collected real people's data and — through no fault of their own understanding — stored it somewhere it shouldn't have been. That's the overwhelming majority of what goes wrong. It's not exciting. It's just expensive.

The law caught up — and it applies to you
Here's the part a lot of owners don't realise: this stopped being only a technical problem in December 2020, when the Privacy Act 2020 came into force. If your business holds personal information about customers — and if you take a name and an email, you do — the law now has expectations of you, no matter how small you are.
Two things matter most in plain terms.
You're required to keep it reasonably safe. One of the Act's core principles says you must protect the personal information you hold with security safeguards that are reasonable in the circumstances. "We used an AI tool and didn't check it" is not a defence anyone wants to be leaning on.
If it leaks, you often have to tell people. This is the big change. If you have a privacy breach that has caused, or is likely to cause, serious harm, you are legally required to notify the Office of the Privacy Commissioner and the affected people as soon as you can. Failing to notify the Commissioner when you should have is an offence, with a fine of up to $10,000. And there's a second consideration: sending customer data offshore — which many AI tools and cloud services do by default — comes with its own rules about making sure it's protected once it leaves the country.
But the $10,000 is rarely the real cost. The real cost is the email you have to send every customer explaining that their details got out. It's the trust that took you ten years to build, gone in the length of one apology. For a local business that runs on reputation and word of mouth, that is the number that should get your attention — not the fine.
The trust that took you ten years to build, gone in the length of one apology.
Five blunt questions to ask about anything that holds customer data
You don't need to read the code. You need to ask the questions — of yourself, or of whoever built it for you — and not accept a shrug. Whether it's a booking form, an app, or an old website you forgot you had:
- Where does the customer data actually live, and who can reach it? If nobody can give you a clear answer, that's the answer.
- Is it locked down, or open by default? Databases and storage often ship wide open. Someone needs to have deliberately closed the door — not assumed it was shut.
- How are passwords stored, and is there two-factor login on the admin? Passwords should be scrambled, never saved as readable text. The account that controls everything should need more than one password to get in.
- Are the secret keys kept out of the code? The keys that connect your systems together should never be written into anything public. If they've ever been exposed, they need replacing.
- Are we collecting more than we need — especially sensitive stuff? Every piece of data you hold is something you have to protect. Health details, dates of birth, anything sensitive: only collect it if you genuinely use it.
If you built it yourself with AI, ask the AI these questions directly and make it show you — it'll often own up to the gaps when you name them. If someone else built it, send them this list. The good ones will answer happily. The answer you get, and how fast, tells you most of what you need to know.
You don't need to become a security expert
Let's be clear, because it's easy to read all this and decide the safe move is to build nothing. That's the wrong lesson. Building fast with AI is a genuine advantage for a small business — the answer isn't to stop, it's to not ship customer data into the world without one honest check first.
Think of it like electrical work. You can absolutely put up your own light fitting. But when it's wired into the walls of a building the public walks through, you get a qualified person to confirm it's safe before you switch it on. Nobody thinks less of you for it. It's just what a responsible operator does. A website or app that collects your customers' details is the same — it's wired into your business, and other people are trusting it.
So build the thing. Move fast. Then, before real customer data starts flowing through it, get someone who knows what they're looking at to run their eye over those five questions. An hour of the right attention now is a tiny price against the email you never want to have to send. Fast and safe isn't a contradiction — it's just the version worth shipping.
Frequently asked questions
The building isn't the risk — the unchecked part is. AI reliably produces software that works, but it frequently misses security basics like locking down databases, protecting passwords, and hiding secret keys. The fix isn't to avoid AI; it's to have anything that collects customer data checked before it goes live.
Broadly, any time personal information you hold is exposed, lost, or accessed by someone who shouldn't have it — a database left open, an email list leaking, an account being broken into. Under the Privacy Act 2020, if a breach is likely to cause serious harm, you're legally required to report it.
If a privacy breach has caused or is likely to cause serious harm, yes — you must notify the Office of the Privacy Commissioner and the people affected as soon as practicable. Failing to notify the Commissioner when required is an offence with a fine of up to $10,000, and staying quiet does far more damage to customer trust than owning it does.
Most small-business breaches aren't targeted at all. They're automated tools sweeping the internet for open databases and exposed keys, or a scammer stumbling onto data that was simply left reachable. Being small doesn't make you invisible; it often just makes you an easier accident.
Start with the five questions in this article — where the data lives, whether it's locked down, how passwords and keys are handled, and whether you're collecting more than you need. If you can't get clear answers, that's your signal to have someone knowledgeable take a proper look.
Mainland Growth Partners helps South Island businesses use modern tools — including AI — without leaving the back door open. Built something with AI and not sure it's safe to trust with customer data? Let's have a chat and we'll help you check.
Related reading
- The Smartest Hire You'll Make This Year Isn't a Person — using AI to automate the grind, safely and one task at a time.
- Why Most Canterbury Businesses Don't Have a Marketing Problem — building a business on systems you can actually trust.
- Reply Faster, Win More: The Enquiry Gap Costing You Jobs — the customer-facing systems worth getting right.
Stop losing customers you've already won.
The free Growth Leak Checklist shows the four places small businesses quietly lose customers — and how to plug each leak in minutes. Plus a practical growth note about once a month.