Outrage as Barclays customers’ details leaked to fraudsters
THE personal details of 13,000 Barclays customers were in the hands of fraudsters for up to seven years, it emerged last night.
The treasure trove of information – including names, dates of birth and addresses – was on a memory stick found by chance in a police raid.
The data extended even to jobs, salaries, debts, insurance policies, mortgages and passport and national insurance numbers. It is feared that thieves may have made multiple copies of the sensitive files.
Furious customers rang the Mail to denounce Barclays for offering only £250 in compensation for the appalling breach.
‘It’s a total insult,’ said Antony Gibson of Scarborough. ‘I have not had a proper explanation of who was responsible for this data theft and why, as presumably neither have thousands of their loyal clients.’
The memory stick was found i n February when police arrested a man in Brighton on suspicion of ticket fraud. The information, which dates from 2008, came from a defunct Barclays unit that sold investments and pensions.
Other details included the results of psychometric tests about customers’ attitude to risk – which could be exploited by f raudsters cold calling people in investment scams.
Over the past few weeks Barclays has written to all affected customers with the offer of compensation. Mark Garnier, a Tory member of the Commons Treasury committee, said: ‘ Barclays must accept any losses incurred by customers as a result of this pretty colossal breach of trust.
‘This is appalling and will cause even more reputational damage for the lender.’
John Mann, a Labour member of the same committee, said: ‘This breach is extraordinary and has endangered thousands of customers. The level of compensation is clearly inadequate. We have no idea who this data has been sold on to.
‘Banks thrive because they are meant to be reliable. This undermines the whole concept of the bank.’
Last year another memory stick was discovered contain- ing encrypted files with information on 2,000 Barclays customers.
The bank is thought to be investigating whether the data in both breaches was stolen by an employee.
Barclays says there is no evidence the files have been exploited by fraudsters.
It added that customers will be able to check their credit records for free for 12 months to ensure there has been no unusual activity.
In the letter apologising for the debacle, Matt Hammerstein, Barclays director of customer experience, says: ‘ We regret to inform you that a copy of some historic information you provided to Barclays Financial Planning has been recovered by police during a criminal investigation unrelated to Barclays. We are very sorry this has occurred.’
A spokesman for the Information Commissioner’s Office, which investigates breaches of the Data Protection Act, said: ‘We are aware of the incident and we wil l be making inquiries.’
Barclays, which has received huge penalties for rigging interest rates and mis-selling investments, is paying compensation of £4million to the victims of the data theft.
A spokesman said: ‘Every indication is that the data here was part of the same theft of data that was reported last year.’
IN a world of rampant identity fraud, no more vital duty rests on those in positions of trust than keeping our personal details secure.
So when Barclays allows confidential files on 13,000 of its customers to fall into conmen’s hands, it is guilty of one of the most serious betrayals a bank can commit.
It was almost six months ago when police discovered the data – including passport and national insurance numbers and the results of customers’ psychometric tests – on a stolen memory stick. Yet only now has the scandal come to light, after victims complained to the Mail over the bank’s derisory offer of £250 compensation. Meanwhile, nobody knows how many copies of the data have been circulating in the underworld since another USB stick of stolen Barclays files was found last year.
Indeed, after a series of similar security failures by banks and insurance firms – not to mention Government departments and HMRC, which notoriously lost data on 25million child benefit recipients – never has t he public been more vulnerable.
With so much at stake, Whitehall and the City must devote whatever it takes of their vast resources to making themselves worthy of our trust.