Datatilsynet criticizes Familieretshuset over data security breaches in Denmark

Datatilsynet, the Danish Data Protection Agency, has once again criticized Familieretshuset for its failure to ensure data security. This follows several incidents involving the unauthorized disclosure of protected personal information, including names, addresses, and details about stays at crisis centers. Datatilsynet issued a public statement on Tuesday addressing these concerns.

Between January 6 and June 30, 2023, Familieretshuset reported 28 breaches of data security to Datatilsynet. These breaches involved the unauthorized sharing of sensitive information that could reveal an individual’s location, including their presence at crisis shelters. In most cases, this information was inadvertently disclosed to the opposing party in family-related cases, which is often the reason for the protection of names or addresses.

The agency attributed these unintended disclosures to human error, specifically “inattention among staff members,” as outlined in the statement.

Familieretshuset is a national authority responsible for handling complex family law cases, such as divorce and child custody disputes. This is not the first time Familieretshuset has faced criticism from Datatilsynet; serious critiques were also issued in 2021 and 2022. In the 2022 case, Familieretshuset received an order to reduce the risk of similar breaches in the future.

Familieretshuset has taken over responsibilities from the former Statsforvaltningen, focusing on issues relating to family law and facilitating arrangements for residency and visitation in child custody cases.