Statement on FCA data breach

The FCA was recently made aware that, in a response to a Freedom of Information Act request published on our website in November 2019, certain underlying confidential information may have been accessible. The response related to the number and nature of new complaints made against the FCA and handled by the Complaints Team between 2 January 2018 and 17 July 2019. The publication of this information was a mistake by the FCA.

As soon as we became aware of this, we removed the relevant data from our website. We have undertaken a full review to identify the extent of any information that may have been accessible. Our primary concern is to ensure the protection and safeguarding of individuals who may be identifiable from the data.

In many instances, the extent of the accessible information was only the name of the person making the complaint, with no further confidential details or specific details of their complaint.

However, there are instances where additional confidential information was contained within the description of the complaint, for example an address, telephone number, or other information. Where this is the case, we are making direct contact with the individuals concerned to apologise and to advise them of the extent of the data disclosed and what the next steps might be.

No financial, payment card, passport or other identity information were included.

We have taken immediate action to ensure this cannot happen again. We have referred the matter to the Information Commissioner’s Office.

If you have any questions or wish to discuss this matter please do not hesitate to contact us on 020 7066 9870 or email [email protected] quoting your FCA complaint reference number(s) if possible.