JFSC apologizes for data breach impacting 261 individuals

The Jersey Financial Services Commission (JFSC) has issued an apology following a data breach that exposed information on 261 individuals associated with Jersey trusts and companies. The breach occurred from June 21 to June 24, 2024, due to an issue that arose during registry system maintenance.

This marks the second instance in 2024 where the JFSC has reported a data breach. On January 23, the regulator revealed a vulnerability in its Registry system, highlighting ongoing challenges in maintaining data security.

In a statement released on July 12, the JFSC detailed that the breach was identified on June 24, 2024. The information exposed included data from the 2021 Transition and Annual Confirmation form, which contained some non-public information. Upon discovering the breach, the JFSC immediately secured the data and resolved the issue on the same day. The regulator has since engaged with the Jersey Office of the Information Commissioner to address the incident.

The JFSC emphasized that trust and confidence in the security and confidentiality of their registry system are of utmost importance. They have undertaken a thorough review to determine the exact cause of the breach and to implement measures to prevent future occurrences. The commission has communicated with the affected individuals and notified the relevant Trust Company Businesses.

"We are sorry this issue occurred and have undertaken a thorough review to pinpoint the exact cause to ensure this does not happen again. We understand the importance of this situation and are committed to communicating openly and transparently," the JFSC stated.