The Dutch data protection authority has too little manpower to process all the data breaches that are reported to investigate. More than half of all data breaches can now no longer be investigated, says the chairman of the CBP.
Moreover, there are many more cases of data breaches is expected if there is a reporting obligation for data breaches is introduced, says Jacob Kohnstamm, chairman of the Dutch dpa, in an interview with The Financieele Dagblad. The CBP can with its budget of 7.5 million euro (approximately 75 full-time jobs to fill. An investigation into a datalek cost for about 6 people half a year, says Kohnstamm.
The CBP investigates data breaches, because mostly personal data of customers of businesses have been stolen or could be. Therefore, the protection of personal data, often not been adequately regulated. If a bill gets, the CBP within a short time, impose a fine. That penalty is a maximum of 200,000 euros.
The number of data breaches in the past year and a half has come out, is seriously increased. In most cases it is a weak or default password is the reason that a database with customer information can be accessed, but often can also be a sql-injection can be used. In the recent time, among others, were KPN, Bavaria, and the National box office, the victim of hacks. Previously, that happened with parties like the Dutch Energy Company and the Associated Press Services.