The State personal data protection agency under the Cabinet of Ministers of the Kyrgyz Republic, having studied the incident related to personal data, notes the unreliability of news sites published about the alleged leak of personal data of citizens of the Kyrgyz Republic as a result of a cyber attack organized by a group of Pakistani hackers called “Team Insane Pakistan”.
An analysis of the published 600 thousand personal records of citizens of Kyrgyzstan is similar to the data that was published in 2020 as a result of a leak from the services of the State Tax Service.
The monitoring showed that personal data from the information systems of government agencies indicated in the media has not been leaked recently, which does not correspond to the information disseminated in the media.
We remind you that in accordance with the Law of the Kyrgyz Republic “On Personal Information”, personal data under the control of the holder is classified as confidential information and only with the written consent of the subject of personal data or in cases established by Law, a regime of public access to information can be established.
In light of recent incidents, we note the importance of paying due attention to the protection of personal data, strict compliance with all norms and requirements of legislation on the protection of personal data. This includes not only compliance with the rules for the collection, processing and storage of personal information, but also taking measures to ensure its confidentiality and security.
The state personal data protection agency calls for awareness of the risks associated with the processing and storage of personal data, and to strive to comply with all norms and principles aimed at protecting personal data and ensuring the privacy of every citizen.