Marriage contracts, pay slips, and medical data of European Parliament staff are now for sale on the internet.
Internal AffairsEuropean Union
- Error detected
- No evidence supports the claim that marriage contracts were among the compromised data.
No evidence supports the claim that pay slips were among the compromised data.
No evidence supports the claim that the compromised data is actively for sale on the internet.
- Omissions
- The breach affected the PEOPLE recruitment platform, not a payroll or HR management system, making the inclusion of pay slips less plausible — the confirmed compromised documents are those typically submitted during recruitment processes.
- No independent evidence was found that the exfiltrated data is actively being offered for sale online. The claim that data is 'for sale' is unverified in all sources consulted.
- The speaker did not cite any source for the claim. All corroborating sources found are secondary news reports; no primary official source (EP statement, EDPS report) could be located within the search constraints to confirm the full scope of compromised data types.
- Sources
- SecondaryPolitico EuropeEmployees' ID cards, birth certificates and medical records were compromised in the breach. The breach affected up to 9,000 staffers and involved the Parliament's recruitment application called PEOPLE.
- SecondaryEuractivIdentity cards, passports, excerpts of criminal records, and work experience documents were among the personal data of European Parliament employees compromised in the breach of its PEOPLE recruitment platform.
- SecondaryNOYB – European Center for Digital RightsThe breach in the EU Parliament's recruitment platform affected the personal data of more than 8000 people. In early May 2024, the European Parliament informed its staff of a massive data breach in the institution's recruiting platform (called PEOPLE).