RDW actions against suspected misuse of personal data

 05 August 2019 - In response to the RTL News report about the suspected misuse of personal data, the RDW has taken the following actions:

  • Together with the LIV (National Information Centre Vehicle Crime), the RDW has launched an investigation into whether there has been a data leak and if so, involving which person or organisation. This investigation must show where the data has come from and whether this has involved misuse. It has not yet been established that the suspected misuse is happening through direct access to the vehicle register. For that reason, the RDW has reported it to the police. The RDW is now awaiting the police findings, and the Dutch Data Protection Authority has been informed.
  • The Management of RDW and the RDW Supervisory Board have decided to assign an external party to investigate the RDW's structural measures to enable its own staff, other government agencies and other professionals to consult the vehicle  register even more securely.   

Social use

 Various government agencies, professionals and citizens use the RDW's vehicle register. Government agencies like the police, the Tax Authorities, the CJIB [Central Fine Collection Agency] and municipalities are allowed by law to access the vehicle  register of the RDW. These services use the vehicle register in, for example, tracking, enforcement and taxation. Professionals like bailiffs and insurers can also consult the register to check the reliability and accuracy of data. Like the RDW, when using personal data these organisations must meet government requirements, particularly with respect to data protection. Citizens must be able to rely on the fact that their privacy-sensitive data are safe with the government. If only technical vehicle data are concerned, anyone may access the vehicle register.

Security

The RDW does its utmost to protect privacy-sensitive data from misuse by unauthorised persons. Security measures are part of all the processes related to registering and consulting the vehicle register. To prevent leaks of privacy-sensitive data, every year the RDW has the processes independently tested, random checks are conducted, as well as permanent monitoring.

RTL News reports suspected misuse of RDW data

23 July 2019 - According to RTL News, RDW data, including personal data, are being traded online. The RDW has not yet established that this is happening through direct access to the vehicle register. This is a very serious issue, and the RDW has reported it to the police.

Investigation

Following the report by RTL News, the RDW launched an investigation, in cooperation with the LIV (National Information Centre Vehicle Crime) and the police. RDW wants to know exactly what the situation is.

Social use

Many parties use the data registered with the RDW. For example, the Tax Authority, the police, the CJIB [Central Fine Collection Agency] and professionals like bailiffs and insurers. Reliability and accuracy of the data is crucial for their work. At the same time, citizens must be able to rely on the fact that their privacy-sensitive data is safe with the RDW.

Measures

 The RDW does its utmost to protect privacy-sensitive data from misuse by unauthorised persons. Security measures are part of all the processes, related to consultation of the registers. Every year, the RDW has the processes independently tested, random checks are conducted, as well as permanent monitoring. The requirements imposed on all parties that need to consult the registers are also high.