The Police Service of Northern Ireland (PSNI) has issued an apology after a data breach that affected approximately 10,000 officers and staff. The incident occurred when the PSNI responded to a Freedom of Information request asking for the number of officers and staff across the organization. In their published response, a table was embedded that contained detailed information, including the surnames, initials, locations, and departments of all PSNI employees. This data was potentially visible to the public for a period of two-and-a-half to three hours.
The breach has left officers and staff shocked, dismayed, and angry. The PSNI is currently investigating the theft of documents, including a spreadsheet that contained the names of over 200 serving officers and staff. The affected individuals have been notified, and the incident has been reported to the office of the Information Commissioner.
Assistant Chief Constable Chris Todd, the senior information risk owner for the PSNI, confirmed that the Chief Constable, Simon Byrne, is returning from leave to address the breach. An emergency meeting of the Northern Ireland Policing Board has been scheduled to address the issue.
Authorities, including Secretary of State Chris Heaton-Harris, Sinn Fein Stormont leader Michelle O’Neill, and DUP leader Sir Jeffrey Donaldson, have expressed the need for accountability and reassurance for the affected officers and staff.
The PSNI is treating the breach as a critical incident and is working with security partners to investigate the matter. Personal security advice has been issued to officers and staff, and an emergency threat assessment group has been established to address their welfare concerns. An independent adviser has also been enlisted to conduct a comprehensive review of the PSNI’s processes to prevent similar breaches in the future.
Liam Kelly, chairman of the Police Federation for Northern Ireland, has received numerous messages from officers expressing their shock and anger at the incident. The affected officers go to great lengths to protect their identities, which makes this breach particularly concerning.
The PSNI, along with law enforcement agencies, continues to face threats from terrorists, with the current assessed level of threat in the region being severe. In light of recent attacks on officers, the PSNI’s priority is to protect its personnel.
The investigation into the data breach is ongoing, and the PSNI will provide updates to the Information Commissioner’s Office as necessary.
This breach highlights the need for enhanced data security measures within the PSNI and serves as a reminder of the potential risks associated with the handling of sensitive information. Efforts must be made to prevent similar incidents from occurring in the future and to ensure the well-being and safety of the PSNI’s officers and staff.