MoD Reveals 49 Data Breaches in Afghan Resettlement Unit Over Four Years

The Ministry of Defence has confirmed 49 separate data breaches over the past four years within the unit managing relocation applications from Afghans seeking safety in the UK.

Four incidents, including the 2022 leak of a spreadsheet containing details of nearly 19,000 applicants, were previously known. That breach was exposed last month after a High Court gagging order was lifted.

Concerns Over Security Culture

Lawyers representing affected Afghans say the new figures, released under the Freedom of Information Act, suggest a pattern of insufficient security measures. Details of individual breaches have not been disclosed by the MoD, but past incidents have involved unintended exposure of email addresses and personal information.

Adnan Malik, head of data protection at Barings Law, which represents hundreds of Afghans in the 2022 incident, criticized the MoD for its handling of the breaches, urging full transparency to protect those at risk.

History of the Relocation Scheme

The Afghan Relocations and Assistance Policy (ARAP), launched in April 2021, aimed to resettle Afghans who worked with British forces and their families. Although the scheme closed in July, it was marred by repeated data security failures.

In September 2021, more than 250 Afghan applicants were accidentally copied into MoD emails, prompting a £350,000 fine by the Information Commissioner's Office (ICO). Despite remedial actions, including new data procedures and a ‘two pairs of eyes’ rule for external communications, breaches continued.

In February 2022, a soldier at Regent’s Park barracks sent a spreadsheet to Afghan contacts, unaware it contained hidden data on nearly 19,000 individuals. The breach remained under a super-injunction until July 2023.

Regulatory and Political Response

Seven of the 49 breaches were serious enough to be reported to the ICO. While the regulator has ongoing engagement with the MoD, it has not taken additional action, citing other priorities. Experts now call for a deeper investigation to ensure lessons have been learned.

A Labour government source said new software and procedures introduced since last year will strengthen data protection. A Conservative spokesman expressed regret and highlighted the then-government’s efforts to shield affected individuals.

An MoD spokesperson stated the department takes data security "extremely seriously" and refers all significant incidents to the ICO, reviewing minor cases internally to improve practices.

The MoD’s admission of 49 breaches highlights systemic failings in safeguarding the personal data of vulnerable Afghan applicants.

This topic was reported by BBC News.

Discover engaging topics and analytical content in World News as of 21-08-2025. The article titled " MoD Reveals 49 Data Breaches in Afghan Resettlement Unit Over Four Years " provides new insights and practical guidance in the World News field. Each topic is meticulously analyzed to deliver actionable information to readers.

The topic " MoD Reveals 49 Data Breaches in Afghan Resettlement Unit Over Four Years " helps you make smarter decisions within the World News category. All topics on our website are unique and offer valuable content for our audience.