A NSW club fears hackers have obtained its 20,000 members’ names, dates of birth and drivers licence details or passport numbers.

Toronto Workers Club is writing to its members today to warn them their personal information was “accessed by a third party” while poker-machine provider Aristocrat was doing cloud-storage testing.

“It appears to be, from what I understand, that during that test period someone has been able to hack into the database and copy and remove it,” club CEO Mark Singleton told News Corp Australia.

While a draft of the letter to members says the club is not aware of evidence that the personal information was accessed by hackers, Aristocrat told News Corp “malicious actors” had access software which was being tested with club members’ data.

The information held in the database is highly personal and includes home addresses, but it does not include details such as bank account and credit card numbers.

The breach was recent and the club has informed the Office of the Australian Information Commissioner as it is required to do under the data breach requirements in the Privacy Act.

In a statement sent to News Corp Australia, Aristocrat said “venue management software it was developing was accessed without authorisation between June 2017 and February 2018 by malicious actors.

“The module concerned was being tested using data from a venue in NSW (The Toronto District Workers’ Club) at the time of the unauthorised access. Data collected from patrons of the Club was therefore located within the compromised development environment,” Aristocrat said.

“Aristocrat has no evidence at this stage that any patron data was in fact either accessed or extracted.

Aristocrat managing director Mitchell Bowen said it “sincerely apologises for this incident”.

No other venue was affected, the company said.