Datatilsynet criticizes Familieretshuset for repeated data breaches in Denmark

Datatilsynet has once again criticized Familieretshuset for failing to handle citizens’ private data securely. Familieretshuset, the authority that deals with complex family cases, including instances of violence, reported 28 breaches in data security from January 6, 2023, to June 30, 2024. This is not the first time they have faced such scrutiny; they received serious criticism for similar issues in 2021 and 2022. Following the 2022 incident, an order was issued to reduce the risk of future breaches.

Vibeke Dyssemark, deputy head of the Guidance and Information Security unit at Datatilsynet, expressed concern over the frequency of these errors, which can have severe consequences for those involved. She emphasized that issues need to be completely avoided or, at the very least, significantly reduced. According to Familieretshuset, the breaches are due to “human errors,” where staff have overlooked deleting sensitive information before it is shared within the system.

Familieretshuset, established on April 1, 2019, took over from Statsforvaltningen and is responsible for legal issues related to family matters such as divorces, custody, and domestic violence. Expert Tanja Kammersgaard Christensen highlighted that it is unacceptable for these mistakes to continue, especially in critical cases involving vulnerable individuals.

While Familieretshuset declined an interview, both experts and Datatilsynet assert that the authority recognizes the seriousness of the errors and is actively working to minimize them. However, they stress that written protocols alone are insufficient; actionable measures are needed to genuinely reduce data breaches. Social Minister Pernille Rosenkrantz-Theil acknowledged her responsibility in mitigating these issues and is awaiting Familieretshuset’s response to the criticism.