Thursday 8 December 2022
Earlier his week, a data breach was reported within the University of Twente. It emerged that employees could access a file containing salary payment data (including IBAN and net salary) of UT employees. This file was not accessible to people outside UT.
An alert employee reported this immediately. Immediately after the report, the data incident protocol was triggered and access to the data was blocked and the file was immediately deleted.
UT has a responsible disclosure procedure that encourages employees to report data breaches. Measures have been taken to prevent this in the future. A report of the incident has been made to the Personal Data Authority (AP).