How does a pension fund merge personal data
For a start, I would like to make a small lyrical digression. Long ago (although you can sometimes still be met), young girls and boys as PC operators, various salespeople, etc., made emails to their customers in a fairly simple way - one letter and all customers in the recipients. Someone complained that his address shines in this way, someone rejoiced at the living base of competitors. Nevertheless, the data distribution can be found much less.
Recently, a mass mailing from the local branch of the pension fund arrived on the electronic document flow. Bulk - this means that all policyholders received the same messages registered in this fund. In the attachment was a Word file describing the essence of the letter.
')
The most quick-witted, I think already guessed what was in the second file.
Important UPD 3 under the cut
(the image is clickable, the lines in the middle are hidden for clarity of the entire volume)
Yes Yes. In the second file is a list with personal data, including SNILS, the address of registration and place of work, the date of birth of 17,752 people !
I can not say that it is laziness or stupidity. But the fact remains.
UPD A little research obtained file
The letter was received 09.06. The file with the tablet was created much earlier, and I suspect that it was originally insured in all the departments of the pension fund. Apparently, on June 9, extra lines with insurers from other PF branches were removed from the file. Therefore, I quite naturally suspect that the data of the insured, at least in Moscow and the Moscow region, were thus distributed to entrepreneurs
UPD 2
UPD 3
I just have to make this addition, in view of the absolutely crazy comment of the official representative of the FIU
Leak could occur at the provider.
The Moscow Pension Fund denies its guilt in the leakage of personal data of 17 thousand people. How did web developer Sergey Deryabin receive to his mail a file with an Excel table with SNILS numbers, registration addresses, places of work, and also birth dates of 17,752 people, now find out. Head of the Media Relations Department of the Pension Fund of the Russian Federation in the city of Moscow and the Moscow Region Marina Gustova told this to the Politika Segodnya Information Agency.
Let me remind you that the newsletter did not come to the post office, but via the electronic document flow:
Accordingly, there is a sender's electronic signature, the integrity of the shipment, and other amenities available with electronic document management. And the data provider is not interested in being extreme, so if you have questions in turn, you would quickly dispel this myth as well.
Just in case, once again, they did not send me an email (email, email), they sent me as they like to talk via a secure data channel. Everything is good here, but neither I nor the other 90% of employers were supposed to get it. And the one who should have received, they should receive a list only with their employees.
Recently, a mass mailing from the local branch of the pension fund arrived on the electronic document flow. Bulk - this means that all policyholders received the same messages registered in this fund. In the attachment was a Word file describing the essence of the letter.
')
The most quick-witted, I think already guessed what was in the second file.
Important UPD 3 under the cut
(the image is clickable, the lines in the middle are hidden for clarity of the entire volume)
Yes Yes. In the second file is a list with personal data, including SNILS, the address of registration and place of work, the date of birth of 17,752 people !
I can not say that it is laziness or stupidity. But the fact remains.
UPD A little research obtained file
The letter was received 09.06. The file with the tablet was created much earlier, and I suspect that it was originally insured in all the departments of the pension fund. Apparently, on June 9, extra lines with insurers from other PF branches were removed from the file. Therefore, I quite naturally suspect that the data of the insured, at least in Moscow and the Moscow region, were thus distributed to entrepreneurs
UPD 2
UPD 3
I just have to make this addition, in view of the absolutely crazy comment of the official representative of the FIU
Leak could occur at the provider.
The Moscow Pension Fund denies its guilt in the leakage of personal data of 17 thousand people. How did web developer Sergey Deryabin receive to his mail a file with an Excel table with SNILS numbers, registration addresses, places of work, and also birth dates of 17,752 people, now find out. Head of the Media Relations Department of the Pension Fund of the Russian Federation in the city of Moscow and the Moscow Region Marina Gustova told this to the Politika Segodnya Information Agency.
Let me remind you that the newsletter did not come to the post office, but via the electronic document flow:
Accordingly, there is a sender's electronic signature, the integrity of the shipment, and other amenities available with electronic document management. And the data provider is not interested in being extreme, so if you have questions in turn, you would quickly dispel this myth as well.
Just in case, once again, they did not send me an email (email, email), they sent me as they like to talk via a secure data channel. Everything is good here, but neither I nor the other 90% of employers were supposed to get it. And the one who should have received, they should receive a list only with their employees.
Source: https://habr.com/ru/post/357384/
All Articles