L’Occitane Blocks 100,000+ Bot Attacks Daily with DataDome

100,000+ attacks

blocked daily

Significant time savings

Seamless integration

with Salesforce

Bot management Cyberfraud Payment fraud Retail & e-commerce Scraping

L’Occitane International S.A. is a leading French cosmetics company specializing in natural cosmetics and is behind famous brands like L’Occitane en Provence, Melvita, Erborian, and Elemis. They chose to partner with DataDome to combat rising bot attacks on their websites. Initially discovering that 30% of traffic was from bad bots, the brand integrated DataDome across Salesforce Commerce Cloud. Today, DataDome’s real-time protection on all endpoints ensures secure, high-performance websites for L’Occitane.

“We barely talk about bots anymore. And that’s a great sign: it means the solution is doing exactly what it should. DataDome has made bot protection a non-issue for us.”

Mathieu Abras

IT Digital Domain Leader at L’Occitane

The challenge: Rising bot attacks increasing infrastructure costs & disrupting business operations

As a global cosmetics brand, L’Occitane operates a vast e-commerce network across several countries. However, the group was facing an increase in automated threats: bad bots were infiltrating the sites to steal content and scrape prices, consuming infrastructure resources, distorting analytics, and launching fraud attempts.

“Bots were becoming a real problem, impacting both our security and business operations,” says Mathieu Abras, IT Digital Domain Leader at L’Occitane.

One of the most alarming incidents occurred in 2018. A password spraying attack on the US site, originating from China, in which fraudsters attempted brute-force logins and tested stolen credit cards to break into customer accounts. “That attack made it clear: we could no longer handle bot mitigation internally. We needed an expert solution.”

At the time, L’Occitane was managing its e-commerce infrastructure in-house, which made bot attacks even more costly. Not only did the web scrapers distort traffic data, affecting everything from conversion tracking to marketing spend, but they also put a strain on the servers, driving up operational costs and creating performance issues. “We initially estimated that 21% of our infrastructure was being consumed by bad bots,” Mathieu recalls. “Once we implemented DataDome, we realized the figure was actually closer to 30%.”

Realizing the need for specialized bot protection, L’Occitane International evaluated several cyberfraud protection & bot management solutions. DataDome’s speed of deployment, real-time accuracy, and proven expertise made it the best choice.

The solution: A unified defense against bots, from on-prem to SaaS

L’Occitane first deployed DataDome Bot Protect on its legacy e-commerce platform, where the results were immediate. Threats that used to require manual intervention were now being blocked in real time.

A few months later, the company embarked on a major digital transformation. To scale its e-commerce operations more efficiently, L’Occitane moved from an on-premises infrastructure to a SaaS-based model, switching to Salesforce Commerce Cloud.

This change promised greater flexibility and lower maintenance costs, but it also introduced a new challenge: ensuring that security remained seamless across different environments. “Security wasn’t something we could afford to compromise on,” Mathieu explains. “We had to make sure that, no matter how our platforms evolved, we had consistent protection in place. DataDome made that possible.”

The transition went smoothly and DataDome adapted effortlessly. Unlike traditional security solutions that struggle with performance bottlenecks, our cyberfraud protection platform works at the edge, detecting and blocking online fraud in real time without adding latency. There were no gaps in coverage, no interruptions to the customer experience, and no need for extensive reconfiguration.

For the IT team, this meant fewer security incidents and false positives, as well as significantly less time spent responding to bot-driven attacks. “From our in-house e-commerce platform to cloud-hosted solutions, DataDome followed us every step of the way,” Mathieu enthuses. “No matter the platform, the protection remained rock solid.”

The results: Over 100,000 bot attacks blocked daily & time savings

Today, L’Occitane is safe from bad bot traffic. “The fact that we barely hear about bot issues anymore is a testament to how well the solution works,” says Mathieu. Across the group’s global websites, DataDome blocks over 100,000 malicious bot requests every day, ensuring the security of customer accounts, the reliability of marketing data, and optimal site performance.

“With every new market or platform we’ve launched, DataDome has been there to secure it consistently, seamlessly, and without disruption,” Mathieu notes.

With automated bot mitigation in place, L’Occitane has significantly reduced the time spent investigating suspicious traffic and now devotes it to higher-value projects. Mathieu confirms: “The real ROI comes from the time saved: we no longer need to spend hours investigating and manually fighting bot attacks. Plus, our analytics are now accurate, which is crucial for business decisions.”

For L’Occitane, security is not a burden anymore. It allows the company to innovate, grow, and serve customers without the constant worry of automated threats. And with DataDome as a trusted partner, the brand knows that no matter how its digital strategy evolves, its protection will always be one step ahead.

Find out if your domain and subdomains are safe from bad bots with our free Vulnerability Scan!