© Copyright Acquisition International 2026 - All Rights Reserved.

Article Image - HMRC under fire for 11 ‘serious’ personal data breaches affecting over 20,000 people
Posted 9th December 2020

HMRC under fire for 11 ‘serious’ personal data breaches affecting over 20,000 people

Law firm accuses taxman of ‘breath-taking incompetence’ over catalogue of data loss incidents affecting tens of thousands of members of the public.

Mouse Scroll AnimationScroll to keep reading

Let us help promote your business to a wider following.

HMRC under fire for 11 ‘serious’ personal data breaches affecting over 20,000 people

data breach

HM Revenue and Customs (HMRC) has reported 11 ‘serious’ personal data incidents to the Information Commissioner’s Office (ICO) in the most recent financial year, according to official figures.

The incidents, disclosed in HMRC’s newly published annual report, are estimated to have affected 23,173 people in total and have been analysed by litigation practice Griffin Law.

The most widespread and serious personal data incident recorded in the report happened in May this year at the height of lockdown, when National Insurance number letters relating to 16-year-old children were sent out with incorrect details, impacting up to 18,864 members of the public.

However, the most severe incident occurred in February 2020, when a fraudulent attack resulted in 64 employees’ details being obtained from three PAYE schemes. Name, contact details and ID data, such as passwords and usernames, were leaked, and an estimated 573 people are said to have been impacted as a result.

According to the report, which was released on the 5th of November, the affected customers had not yet been contacted, but the incident is still under investigation.

Other data incidents documented by HMRC in their annual report include a cyber attack against an agent and their client data, affecting 25 people; an incorrectly accessed tax payer record, and resulting refund to the taxpayer’s mother; leak of addresses and property details due to usage of the incorrect Excel spreadsheet, and, leak of medical documents, private correspondence and company data due to paperwork being left on a train.

A further 3,616 ‘centrally managed’ security incidents were also recorded; however specific details of these incidents were not revealed.

HMRC stated the following in the report: “We deal with millions of customers every year and tens of millions of paper and electronic interactions. We take the issue of data security extremely seriously and continually look to improve the security of customer information. We investigate and analyse all security incidents to understand and reduce security and information risk. We actively learn and act on our incidents. For example, by making changes to business processes relating to post moving throughout HMRC and undertaking assurance work with third party service providers to ensure that agreed processes are being carried out.”

 

Cyber security expert Tim Sadler, CEO, Tessian commented:

“Human error is the leading cause of data breaches today. And given that people are in control of more data than ever before, it’s also not that surprising that security incidents caused by human error are rising. 

“That’s not to say, though, that people are the weakest link when it comes to data security. Mistakes happen – it’s human nature – but sometimes these mistakes can expose data and cause significant reputational and financial damage. It’s an organisation’s responsibility, then, to ensure that solutions are put in place to prevent mistakes that compromise cybersecurity from happening – alerting people to their errors before they do something they regret.” 

 

Donal Blaney, principle, Griffin Law added:

“Taxpayers have a right to expect their sensitive personal data to kept secure by the taxman. The Information Commissioner should immediately investigate HMRC for these breaches and hold the taxman to account for this breathtakingly incompetence”.

Categories: Legal


You Might Also Like
Read Full PostRead - Eye Icon
7 Essential Strategies for Enhancing Global Business Communication in 2024
News
25/04/20247 Essential Strategies for Enhancing Global Business Communication in 2024

You’re navigating the global business arena, looking to sharpen communication strategies for your international operations. It’s clear that fostering effective dialogue across borders can make or break success in today’s interconnected market

Read Full PostRead - Eye Icon
CEO of the month, the UK: David Renshaw,OBS Logistics Limited
Finance
28/10/2015CEO of the month, the UK: David Renshaw,OBS Logistics Limited

David joined OBS Logistics, which is a member of the Anisa Group of companies, in 2006.

Read Full PostRead - Eye Icon
SGP Rechtsanwälte Advise Pyrolyx’s Purchase of Carbon Clean Tech Stegelitz
M&A
08/07/2015SGP Rechtsanwälte Advise Pyrolyx’s Purchase of Carbon Clean Tech Stegelitz

SGP Rechtsanwälte Advise Pyrolyx's Purchase of Carbon Clean Tech Stegelitz

Read Full PostRead - Eye Icon
Is It Worth Investing In Trademarks When Expanding Your Business Globally?
News
16/12/2022Is It Worth Investing In Trademarks When Expanding Your Business Globally?

Most business owners want to ensure that their products resonate with their local consumers before expanding globally. If your product or service has become a success and you know there is a market outside Canada, going global is a good idea. 

Read Full PostRead - Eye Icon
What Are the Possible Impacts of Flipkart Purchasing eBay India?
Finance
20/04/2017What Are the Possible Impacts of Flipkart Purchasing eBay India?

Electronic commerce company Flipkart has recently announced that it will be purchasing eBay India. This is in an effort to further their influence in the country against rival company Amazon, and is surely a move which will serve to heighten competition betwee

Read Full PostRead - Eye Icon
The Many Changes & Challenges Headed For The Retail Banking Industry
News
01/02/2024The Many Changes & Challenges Headed For The Retail Banking Industry

Source – https://unsplash.com/photos/blue-and-white-unks-coffee-shop-signage-0O2Pp6-mOkY Over the course of this decade, the retail banking industry is set to witness more twists and turns than a rollercoaster at Six Flags. Plenty of changes, challenges,

Read Full PostRead - Eye Icon
Classic Car Insurance: Reasons You Need to Protect Your Investment
Legal
04/05/2023Classic Car Insurance: Reasons You Need to Protect Your Investment

Classic cars are a mark of elegance and durability, making them a valuable addition to your collection of vehicles. Due to their unique features, they will often require special care to last them through the years, allowing you to eliminate wear and tear that

Read Full PostRead - Eye Icon
Freetech Wins Bid
M&A
17/10/2016Freetech Wins Bid

A leading asphalt pavement maintenance integrated solution provider, announced that the Group's major subsidiary won a bid on bulk equipment procurement project with Hainan Province Highway Department and will provide 13 sets of asphalt pavement multi-purpFree

Read Full PostRead - Eye Icon
Leadership Responsibility: The Business Case for Providing Health Services to Your Workforce
Innovation
09/01/2026Leadership Responsibility: The Business Case for Providing Health Services to Your Workforce

Leading By Example If business managers demonstrate an interest in the wellbeing of their staff, this feeling can transcend within the organisation. You often hear about football managers talking about how every role in the club is key to the team’s succ



Our Trusted Brands

Acquisition International is a flagship brand of AI Global Media. AI Global Media is a B2B enterprise and are committed to creating engaging content allowing businesses to market their services to a larger global audience. We have a number of unique brands, each of which serves a specific industry or region. Each brand covers the latest news in its sector and publishes a digital magazine and newsletter which is read by a global audience.

Arrow