CVS shut down its online photo center after a security breach may have compromised customer credit card information, the company said Friday.
The national pharmacy chain posted a message on CVSPhoto.com clarifying that customers who shopped at CVS.com and in stores were not affected.
"We have been made aware that customer credit card information collected by the independent vendor who manages and hosts CVSPhoto.com may have been compromised," the company wrote.
"Customer registrations related to online photo processing and CVSPhoto.com are completely separate from CVS.com and our pharmacies. Financial transactions on CVS.com and in-store are not affected."
The vendor who manages CVSPhoto.com, PNI Digital Media, also runs the photo center website for Walmart Canada, which was hit by its own security breach last week.
Like CVSPhoto.com, WalmartPhotoCentre.ca has been disabled, with the company noting that customers of Walmart.ca, Walmart.com and brick-and-mortar Walmart stores in Canada have not been affected.
"We take the protection of information very seriously," a PNI spokesperson told NBC News in a statement. "PNI is investigating a potential credit card data security issue. If an issue is discovered, it is important to note that consumers are not responsible for any fraudulent activity on their credit cards that is reported on a timely basis."
On its website, the Vancouver-based PNI Digital Media said that it powers "19,000 retail locations and 8,000 in-store kiosks." Neither PNI or CVS would comment on how many customers might have been affected.
