Registry system statement

On 23 January 2024, a vulnerability was detected in our Registry system.

We have conducted an initial forensic review with an independent cyber security partner. This review identified that the vulnerability was due to a misconfiguration in our third party-supplied Registry system, which had been implemented in January 2021.

This vulnerability allowed access to non-public names and addresses. It did not link any individuals to registered entities or roles held.

We immediately took action to resolve the issue and have separately written to certain individuals whose name and address was accessed and to whom we owe an obligation to communicate individually.

We deeply regret this has occurred and are currently undertaking further investigations to determine how this happened.

We have been working throughout with the Jersey Office of the Information Commissioner.  

There is no need to contact us unless you wish to do so. Whilst the information is limited to names and addresses only we understand some may have concerns, and anyone with further queries can contact us on query@jerseyfsc.org.

For the full FAQs, visit Registry system public statement.