Overview
- Dame Meg Hillier wrote to chief executive Charlie Nunn, calling the exposure of customer information “an alarming breach of data confidentiality.”
- The committee seeks the number affected, the channels hit, the precise data elements shown, whether those individuals can be identified and contacted, details on compensation, steps to encourage deletion of copied data, and when regulators were notified.
- Deadlines set by MPs require an initial assessment within one month on any financial‑crime victimisation and a full incident explanation with prevention measures within six months.
- On 12 March some users of Lloyds, Halifax and Bank of Scotland apps saw other people’s activity, including direct debits, wages, cash withdrawals and some national insurance numbers; Lloyds apologised, said the issue was quickly resolved and is investigating.
- The Financial Conduct Authority says it is in contact with Lloyds and expects firms to protect customer data and recover quickly from disruptions, as scrutiny intensifies following data showing 158 bank IT failures from January 2023 to February 2025, including 12 at Lloyds.