Jersey data breach leaks personal information
An initial forensic review found the leak was caused due to a misconfiguration in its third party-supplied Registry system
- Published
A data breach at Jersey's Financial Services Commission has allowed access to non-public names and addresses.
The organisation confirmed a "vulnerability" was detected in its Registry system on 23 January.
It said the leak did not link any individuals to registered entities or roles held and that it had separately written to those whose names and addresses had been accessed.
An initial forensic review found the leak was caused due to a misconfiguration in its third party-supplied Registry system.
"We deeply regret this has occurred and are currently undertaking further investigations to determine how this happened," the organisation said.
The JFSC said it was working with the Jersey Office of the Information Commissioner.
Deputy Ian Gorst, minister with responsibility for financial services, said the leak had affected a "limited number of entries" in the system.
He added: “I am sorry that this fault occurred and I understand that the JFSC are conducting the most thorough of investigations to make sure lessons are learned and the design of the Register is improved and strengthened.
“Further to this, I have commissioned an independent investigation to determine that the actions taken to date have been appropriate."
Follow BBC Jersey on X (formerly Twitter), external and Facebook, external. Send your story ideas to channel.islands@bbc.co.uk, external.
- Published13 October 2022
- Published30 September 2020
