ChannelLife UK - Industry insider news for technology resellers
United Kingdom
Guides
#
cloud services
#
cybersecurity
#
distributors
#
microsoft
#
partner programmes
Search
Story image
#
Data Protection
#
Breach Prevention
#
Data Privacy

Jobseekers hit by nearly 400 data breaches at Jobcentres in 2024

Yesterday
Author image
By Shannon Williams, Journalist

British jobseekers were affected by close to 400 data breaches at Jobcentres across the country in 2024, according to recent information disclosed by the Department of Work and Pensions (DWP).

Data obtained by Data Breach Claims UK via a Freedom of Information request revealed that at least 238 Jobcentres experienced one or more data security incidents between November 2023 and January 2025. The reported incidents involved both general data security breaches and postal errors resulting in unauthorised access to personal information.

Of particular concern, the DWP reported 261 'postal security incidents' during this period. These occurred when official documents containing personal information were mailed to the wrong addresses, and the contents were subsequently opened by unauthorised recipients.

The DWP has previously been criticised by the Information Commissioner's Office (ICO). In 2022, a reprimand followed a failure in the Child Maintenance Appeals service to redact sensitive data, which led to the personal details of 16 individuals being sent to unintended third parties. One notable case involved the information being sent to an ex-partner with a history of domestic abuse. The DWP issued an apology in the aftermath of the ICO's intervention on that occasion.

The DWP defended its record regarding mail security, stating: "DWP issues over 80,000,000 mail notifications per annum and the number of recorded Postal Security Incidents recorded equates to 0.00027%."

Guidance from the ICO defines a data breach as a "breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data". For jobseekers, this can involve sensitive information such as names, addresses, National Insurance numbers, employment and education history, bank details, and sometimes medical information.

Breaches of this information can have serious implications. In one case cited from 2014, a person affected by a Jobcentre Plus data breach was said to have been compelled to move to a different part of the country for safety reasons.

Data Breach Claims UK specialist Bethan Hakesley commented: "In this current climate, jobseekers already have more than enough to worry about without a mistake causing their personal data to become public."

She continued: "Even one data breach is too many, especially if it causes a person significant stress. If personal data gets in the wrong hands, it can have a devastating impact.

"We've supported many people who have had their lives turned upside down by a simple error with serious consequences. If someone suffers mental harm or financial damage because of a personal data breach, they're well within their rights to look into claiming compensation."

The data also revealed that 369 breaches occurred at 218 distinct Jobcentre locations throughout 2024. The highest number of incidents in individual centres were recorded at Barnet and Bromley in London, as well as Derby and Nottingham in the East Midlands, and Ramsgate in Kent, each with seven separate data breach incidents. Together, these five centres accounted for just under 10% of all data breaches reported in the country. Littlehampton, Northampton and Lowestoft were the only other locations with five or more cases in the year.

The DWP reported that 19 of the data breaches were formally disclosed to the ICO during the 2023/24 period. In the first three weeks of 2025 alone, 32 data breaches were identified, with Newcastle City Jobcentre and Woking Jobcentre each reporting two incidents within that timeframe.

Among the 261 postal incidents logged between November 2023 and January 2025, Coventry was the most affected area, with 30 reported cases. This was more than double the incidents in Torquay, which had 14. Birkenhead, Makerfield and Norwich also each experienced ten or more postal security incidents.

Out of all postal mishaps, 103 incidents affected individuals involved in the DWP's Work & Health programme. The north east and southern England were the regions most affected, with 27 and 26 postal errors respectively.

Data Breach Claims UK, whose findings can be reviewed at https://www.databreachclaims.org.uk/, offers support and advice to people who have experienced financial or emotional harm as a result of a data breach. The organisation provides a free compensation claim assessment via its phone and online services, which are available around the clock.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
UK Digital Twin Centre targets GBP £62 million boost
How the Orlando Magic are reinventing fandom with data and AI
New platform aims to fix gaps in corporate cyber response plans
SAS Viya expands AI tools with new offerings & cloud services
Businesses turn to quantum AI despite high costs & confusion
Top stories
Apsen Farmacêutica boosts ERP automation, avoids costly migration
SAS unveils digital twins, Viya upgrades & sector AI models
Oxford Saïd launches MBA boosting cyber resilience skills
Carnival Internet UK launches with eco pledges & fair pricing
Live AI interpretation bridges language gap at Consensus 2025