“According to our information, abusing his official position, the employee gained access to a limited segment of client data of one of the NSV partners, stole and tried to implement a small number of records,” the press release says.
The company emphasized that as a result of these actions "no personal data of clients has become publicly available."
In addition, an official audit was organized on the fact of the incident and the preparation of additional security measures and an audit of internal processes began.
“The suspected employee worked only on a dedicated partner project with a limited amount of client data, no leaks were found on other banks and NSV partners,” the collection agency emphasized.
The National Recovery Service also confirmed its readiness to cooperate with the investigation and expressed apology to partners and clients in connection with the current situation.
The company also announced its intention to take “the toughest measures in the framework of civil and criminal proceedings” against the specified employee.
Earlier, the Russian Ministry of Internal Affairs reported the detention of several banks, including Sberbank, suspected of embezzlement of client data during a special operation.
In early October, Sberbank announced the second leak of customer credit card data in a month.