Polish Border Guard officer accessed personal data from 2015-2020, prompting data protection investigation and security recommendations.
Data Breach Details
The Main Command of the Border Guard reported a personal data protection breach. A male officer exceeded his authority to process personal data from March 27, 2015, to October 19, 2020, gaining access to personal data from the PESEL database and the Integrated Border Crossing and Identification Archive (ZAOIL).
Types of Data Accessed
The officer processed this data for his own use, including personal information such as names, birth dates and places, PESEL numbers, citizenship, travel document numbers, visas, marital status, photographs, and identification data related to border crossings and vehicle operations.
Sources of Compromised Data
The compromised data primarily included information about the officer’s immediate family members, neighbors from Kunikowce village in Przemysl County, and individuals from Przemysl where he maintained an apartment. The data also included information about other officers from the Border Guard, National Tax Administration, and Police.
Investigation Findings
According to the Border Guard Main Command (KGSG), no further unlawful use of this data was found in criminal proceedings. The KGSG notified the President of the Personal Data Protection Office, and both investigative and disciplinary proceedings have been initiated against the officer.
Security Recommendations
Despite no evidence of unauthorized data use, the Border Guard Main Command has issued recommendations to protect affected individuals. These include exercising caution when sharing personal data online or via phone, verifying the identity of those requesting personal information, and using free security tools such as PESEL number protection services and credit activity monitoring.