Data Protection

My Department identified the following number of data breaches in each of the years since 2016 and to date in 2023. No records are available for the period before 2016.

Year Number of data breaches

2016 57

2017 108

2018 226

2019 371

2020 508

2021 646

2022 502

2023 to date 482

The vast majority of the confirmed data breaches relate to incidents where customer information was accidentally and inadvertently disclosed to third parties, e.g. misaddressed correspondence by email or post. In each of these incidents, the Department followed procedures in accordance with data protection legislation and every effort was made to secure data as quickly and efficiently as possible.

My Department takes data protection obligations very seriously. In order to protect the personal data of its customers and to minimise data protection incidents, a dedicated Programme Board is in place to oversee data protection matters in the Department.

In addition, my Department has in place a set of data protection policies, standards, procedures and guidelines governing the use of its computer systems and customer data. These policies, procedures and guidelines are kept under constant review and are updated as appropriate.