Missing disks revealed as cause of National Lottery Community Fund data breach

The National Lottery Community Fund (NCLF) has revealed further details around a data breach that has been reported to the Information Commissioner’s Office.

The breach relates to data provided to the Fund between 2013 and 2019 involving information, including bank details of grant holders and those applying for awards.

The Fund has revealed that the breach is due to two encrypted disks “being identified as missing from a secure, access-controlled location on our premises”.

“Unfortunately, despite best efforts, we are unable to confirm whether they are lost, stolen or destroyed,” said the NLCF.

“We are sorry for any worry this may cause and want to assure all our grant holders, past, present and future, that we take your personal data seriously.”
Involved in the data breach is information relating to NLCF’s UK Portfolio, which looks at innovative approaches to supporting communities, England funding and Building Better Opportunities, which funds projects that tackle poverty and social inclusion.

Information includes those in the process of applying for a grant as well as existing grant holders.

Names, addresses, emails as well a phone and mobile numbers are among information involved.

Bank details, date of birth as well as website details are also included.

NLCF stresses that the breach does not involve bank account PINs, passwords or bank card details “as we do not collect them”.

The Fund’s statement adds: “This is an ongoing investigation however, and other personal data may be affected – we will update our website if this is confirmed.

“We are looking into the matter fully to understand what has happened, but we need to make any UK Portfolio, England funding or Building Better Opportunities customers who supplied this type of information to us during this date range aware that their data could be at risk.

“If you believe you may be affected, we urge you to consider updating the passwords on your accounts (ensuring you use strong, unique passwords), look out for phishing emails or fraudulent activity on your bank account and consider running a credit check against your name and address to enable you to spot any fraudulent applications being made in your name.”

    Share Story:

Recent Stories


How to elevate your non-profit storytelling with data and performance metrics.
Sage Intacct the non-profit financial management platform, takes a look at giving trends and insights.

What has the pandemic taught us about the public’s perception of charities?
In this episode of the Charity Times Leadership podcast, we take a look at what the pandemic has taught us about the public’s perception of charities. Charity fundraising platform, Enthuse, recently released its quarterly donor research study, which highlighted significant shifts in donor behaviour throughout the duration of the pandemic. Not only does the report highlight an overarching sense of positivity towards the sector, but a propensity for younger generations to give more generously, too. Lauren Weymouth is joined by Enthuse CEO, Chester Mojay-Sinclare to discuss more.

The importance of the ‘S’ in ‘ESG’
In this episode, Lauren Weymouth is joined by Ketan Patel, equities fund manager at EdenTree, to delve into the issue of social investment and why that all-important ‘S’ in ESG is more relevant now than ever before. The social element of ESG often gets forgotten when thinking about investing in more ethical and sustainable ways. But, after a challenging year for all areas of society, social injustice has been highlighted, and there’s a much greater need for charities to put people at the heart of their investment decisions.