Mass data breach by the Bulgaria National Revenue Agency

In 2019, the Bulgaria National Revenue Agency servers were hacked, compromising personal data of approximately six million people. KDBM believes the hack was partly due to deficient security practices and technical infrastructure, and that the Agency violated European law by not informing affected people about which data had been compromised.

KDBM are taking collective action on behalf of all those affected by the data breach, demanding that the Bulgaria National Revenue Agency introduce new technical and organisational measures in line with European data protection standards.

Mass data breach by the Bulgaria National Revenue Agency

Organisation Name

Kaldamukov, Dinev, Bliznakova and Mandazhieva (KDBM) Law Firm

Country/Jurisdiction

Bulgaria

Amount Granted

EUR 72,781

Current Status

Ongoing

Grant type

Single Instance Litigation Support

Description

In 2019, the Bulgaria National Revenue Agency servers were hacked, compromising personal data of approximately six million people. KDBM believes the hack was partly due to deficient security practices and technical infrastructure, and that the Agency violated European law by not informing affected people about which data had been compromised.

KDBM are taking collective action on behalf of all those affected by the data breach, demanding that the Bulgaria National Revenue Agency introduce new technical and organisational measures in line with European data protection standards.

"...the Bulgaria National Revenue Agency servers were hacked, compromising personal data of approximately six million people"

Strategic Goal

  • To push Bulgarian public institutions to prioritise information security and introduce personal data processing practices in line with EU standards.
  • To demonstrate to Bulgarian society that digital rights matter and can be protected through judicial redress against the state.

Organisation Name

Women’s Link Worldwide

Image credit: Photo by Ron Lach from Pexels