The data included names of individuals who lodged complaints against the agency over the last two years.
The FCA said that while some contact information may have been made accessible, there was no exposure of financial, credit card or identity card details.