In total were 316 pages of names and corresponding Social Security numbers on the intranet. It involves a minimum of 5,000 and up to 140,000 people.

This is evident from documents that are requested by The Associated Press, relying on the Public Administration Act. The persons to whom it is not informed by the municipality of Utrecht.

Because the data were on the intranet, it would be unlikely that the exposed information was seen and / or misused. However, at the public works than 4,000 people.

Possible abuse of personal data, according to the municipality not detectable but not also be ruled out. It is not clear how long were seen in the data.

Criminals can commit identity fraud combination BSN and name and address. The (im) material damage can not be overlooked.

The data leak was observed on March 3 by an official. There is mention of it to the Authority Personal (AP), moreover, one day later than the 72 hours that state before. Since January 1 of this year, subject to a reporting requirement under the Data Protection Act.

The intranet site after fixing the leak ‘put close. It is unclear to which site it was; this information in the documents is painted black.

Of the nine data leaks that to May occurred in the municipality, there were two so severe that the Personal Authority has been informed. The second incident was a copy of a passport and a bank card to apply for a license sent by email.

From 2017, annual expenditures of the municipality structural 550,000 euros to the security of its systems. In the Spring Memorandum states that the municipality of Utrecht its processes and systems is not sufficiently under control to prevent data leaks or minimize.

Amersfoort came earlier this year, data from 1900 people in the wrong hands. This information was distributed by mail.



From now automatically via e-mail news about money, mortgage or receive a pension? Subscribe here for free on the DFT Newsletter