Investigation Launched into Police Ombudsman for Northern Ireland Data Breach

An investigation has been launched following a data breach at the Police Ombudsman for Northern Ireland (PONI) that exposed the personal details of over 150 current and former staff members. The breach occurred when a document containing staff names and employment details was inadvertently released to 22 individuals involved in a recruitment exercise.

The leaked information included the first name initial and last name of all staff members employed at PONI as of May 2022, along with their employment status and team details. This extensive breach also revealed information about staff members who had resigned, were on career breaks, or were new starts.

Chief executive Hugh Hume notified staff members of the breach, and efforts have been made to mitigate the situation by contacting those who received the document in error. So far, 12 individuals have confirmed that they have deleted the email and associated documentation.

This is not the first data breach incident in Northern Ireland, as the Police Service of Northern Ireland (PSNI) has also faced similar issues in the past. In a separate incident, partial names and details of 10,000 PSNI staff members were accidentally released in response to a Freedom of Information request, leading to concerns about data security.

The PONI office has apologized for the breach and is taking steps to address the situation, including notifying the Information Commissioner’s Office and appointing an independent external investigator to review the incident. The incident serves as a reminder of the importance of data security and the need for stringent measures to protect sensitive information.