CAF error against you.
Just over 10,000 beneficiaries of the Gironde family allowance fund have had their personal information published for all to see on a website for a year and a half, reveals the Radio France investigation unit.
If the first name, last name, postal code, city, telephone number, email and beneficiary number do not appear in the leaked file, 181 data per beneficiary remained accessible, including income, number of dependent children, the aid received or the date of birth.
To discover
Withdrawal period, termination of subscriptions... What will change for consumers in 2023
The highly sensitive file was extracted from the databases of CAF de Gironde as part of training for nine employees in new statistical software.
These data were transmitted by CAF to the service provider in charge of the training for the realization of practical exercises.
The service provider, who he said believed that it was fake data, published the file in free access on his site at the time of the training so that the agents could access it.
“
These data should never have been put and maintained online by the provider responsible for training
,” defends the National Family Allowance Fund (CNAF) in a press release.
Read alsoData leak: the Irish Cnil opens an investigation against Twitter
Warned of the situation by the journalists of Radio France on January 2, the CNAF "
requested without delay the deletion of the document posted online as well as all the copies which could still be in its possession
", specifies the press release.
Still, the document will have been accessible to anyone for 18 months.
This unfortunate combination of circumstances could prove to be extremely harmful if a hacker had seized it.
By having so much personal data, he could easily usurp the identity of the recipients concerned.
Contacted, the National Commission for Computing and Liberties (CNIL) confirms having received a data breach notification concerning this case.
The authority will therefore conduct an investigation.
Beyond the administrative sanctions that the CNIL could impose on the CAF of Gironde, the case could be brought before the courts with criminal consequences for those responsible.
An internal investigation has already been opened by CAF de Gironde “
to understand how this situation could have arisen and put in place a tighter monitoring system
”.
/cloudfront-eu-central-1.images.arcpublishing.com/prisa/N6RCKQB3T5EU3NIO4BUJ4QOGOM.jpg)
/cloudfront-eu-central-1.images.arcpublishing.com/prisa/KMEYMJKESBAZBE4MRBAM4TGHIQ.jpg)
