© Copyright Acquisition International 2026 - All Rights Reserved.

Article Image - HMRC under fire for 11 ‘serious’ personal data breaches affecting over 20,000 people
Posted 9th December 2020

HMRC under fire for 11 ‘serious’ personal data breaches affecting over 20,000 people

Law firm accuses taxman of ‘breath-taking incompetence’ over catalogue of data loss incidents affecting tens of thousands of members of the public.

Mouse Scroll AnimationScroll to keep reading

Let us help promote your business to a wider following.

HMRC under fire for 11 ‘serious’ personal data breaches affecting over 20,000 people

data breach

HM Revenue and Customs (HMRC) has reported 11 ‘serious’ personal data incidents to the Information Commissioner’s Office (ICO) in the most recent financial year, according to official figures.

The incidents, disclosed in HMRC’s newly published annual report, are estimated to have affected 23,173 people in total and have been analysed by litigation practice Griffin Law.

The most widespread and serious personal data incident recorded in the report happened in May this year at the height of lockdown, when National Insurance number letters relating to 16-year-old children were sent out with incorrect details, impacting up to 18,864 members of the public.

However, the most severe incident occurred in February 2020, when a fraudulent attack resulted in 64 employees’ details being obtained from three PAYE schemes. Name, contact details and ID data, such as passwords and usernames, were leaked, and an estimated 573 people are said to have been impacted as a result.

According to the report, which was released on the 5th of November, the affected customers had not yet been contacted, but the incident is still under investigation.

Other data incidents documented by HMRC in their annual report include a cyber attack against an agent and their client data, affecting 25 people; an incorrectly accessed tax payer record, and resulting refund to the taxpayer’s mother; leak of addresses and property details due to usage of the incorrect Excel spreadsheet, and, leak of medical documents, private correspondence and company data due to paperwork being left on a train.

A further 3,616 ‘centrally managed’ security incidents were also recorded; however specific details of these incidents were not revealed.

HMRC stated the following in the report: “We deal with millions of customers every year and tens of millions of paper and electronic interactions. We take the issue of data security extremely seriously and continually look to improve the security of customer information. We investigate and analyse all security incidents to understand and reduce security and information risk. We actively learn and act on our incidents. For example, by making changes to business processes relating to post moving throughout HMRC and undertaking assurance work with third party service providers to ensure that agreed processes are being carried out.”

 

Cyber security expert Tim Sadler, CEO, Tessian commented:

“Human error is the leading cause of data breaches today. And given that people are in control of more data than ever before, it’s also not that surprising that security incidents caused by human error are rising. 

“That’s not to say, though, that people are the weakest link when it comes to data security. Mistakes happen – it’s human nature – but sometimes these mistakes can expose data and cause significant reputational and financial damage. It’s an organisation’s responsibility, then, to ensure that solutions are put in place to prevent mistakes that compromise cybersecurity from happening – alerting people to their errors before they do something they regret.” 

 

Donal Blaney, principle, Griffin Law added:

“Taxpayers have a right to expect their sensitive personal data to kept secure by the taxman. The Information Commissioner should immediately investigate HMRC for these breaches and hold the taxman to account for this breathtakingly incompetence”.

Categories: Legal


You Might Also Like
Read Full PostRead - Eye Icon
Advancements in Machine Learning for Short-Term Weather Prediction Models
News
15/01/2024Advancements in Machine Learning for Short-Term Weather Prediction Models

The impact of machine learning on industries cannot be overlooked, and weather forecasting is no exception. In recent times, significant progress has been made in using machine learning algorithms to enhance short-term weather forecast models. These advancemen

Read Full PostRead - Eye Icon
Outstanding Care from Overington
Leadership
25/08/2020Outstanding Care from Overington

As one of the most outstanding and multi-award winning care agencies, Overington Care Ltd. sets a standard in the industry that few could ever hope to match. Supporting individuals to remain independent in their own home, it is no wonder that Overington Care h

Read Full PostRead - Eye Icon
Corinthia Hotels Announces the Acquisition of the Grand Hotel Astoria, Brussels
Finance
17/05/2016Corinthia Hotels Announces the Acquisition of the Grand Hotel Astoria, Brussels

Corinthia Hotels Announces the Acquisition of the Hotel Astoria in Brussels.

Read Full PostRead - Eye Icon
Understanding Factors Behind the Pound–Dollar Exchange Rate Outlook
Finance
30/03/2026Understanding Factors Behind the Pound–Dollar Exchange Rate Outlook

Currency markets reflect a complex network of economic signals, global capital flows, and investor sentiment. Among the most actively tracked currency pairs worldwide is the British pound against the U.S. dollar, a benchmark for measuring economic expectations

Read Full PostRead - Eye Icon
Acquisition International is Proud to Announce the Winners of the 2023 Research & Development Awards
News
28/09/2023Acquisition International is Proud to Announce the Winners of the 2023 Research & Development Awards

United Kingdom, September 2023 – Leading B2B publication, Acquisition International, reveals the winners within this year’s edition of the Research & Development Awards.

Read Full PostRead - Eye Icon
Fast Food Franchise CFO of the Year 2024 (UAE): Darrell Edon
Finance
13/08/2024Fast Food Franchise CFO of the Year 2024 (UAE): Darrell Edon

PJP Investments Group (PJPIG) is the master franchisee of Papa John’s Pizza in the United Arab Emirates, Saudi Arabia, and Jordan, which currently owns and operates over 120 Papa John’s Pizza restaurants across these territories. As CFO, Darrell Edon drive

Read Full PostRead - Eye Icon
Pros and Cons of Buying a Car with Cryptocurrency
Finance
15/11/2021Pros and Cons of Buying a Car with Cryptocurrency

The advantages and pros of buying a car with Cryptocurrency are very much the same as with any other vehicle. This is because the main purpose of Cryptocurrency trading software or other automated trading robots is to match the amount of money coming in with t

Read Full PostRead - Eye Icon
Expert Ophthalmic Care in a Pace-Setting Nigerian Institution
Leadership
05/01/2019Expert Ophthalmic Care in a Pace-Setting Nigerian Institution

The Eye Foundation Hospital is a leading ophthalmic institution, providing state of the art care and services for Nigerians. Recently, we spoke with Ogugua Okonkwo, Consultant Ophthalmic Surgeon & Vitreoretina Specialist at the hospital, to find out more about

Read Full PostRead - Eye Icon
Pulling the Strings: Gibson Guitar Corp
Strategy
18/03/2015Pulling the Strings: Gibson Guitar Corp

We spoke to Henry Juszkiewicz, who is Chairman and CEO of the famous Gibson Guitar Corp.



Our Trusted Brands

Acquisition International is a flagship brand of AI Global Media. AI Global Media is a B2B enterprise and are committed to creating engaging content allowing businesses to market their services to a larger global audience. We have a number of unique brands, each of which serves a specific industry or region. Each brand covers the latest news in its sector and publishes a digital magazine and newsletter which is read by a global audience.

Arrow