Image copyright Isabella Morrison-Shand
Isabella Morrison-Shand was despatched the main points of one other customer
Some TSB clients receiving letters acknowledging a criticism over the latest IT meltdown have additionally been despatched different clients' particulars.
Letters from the bank confirmed the identify, tackle and reference variety of any individual else.
The bank has apologised for the errors, however one MP has instructed that the error might breach new knowledge safety guidelines.
Treasury Committee member John Mann stated: "There is a danger action could be taken against the bank."
'No confidence'
TSB has been battling to resolve points with varied companies since an IT switchover on the finish of April.
It has had groups "working around the clock" to repair the problems, which started after the migration of information on TSB's 5 million clients from former proprietor Lloyds' IT system to a new one managed by present proprietor Sabadell.
Problems stay for somesignificantly enterprise account holderswho're attempting to make funds or entry on-line data. The bank's chief govt, Paul Pester, will seem earlier than MPs on the Treasury Committee for a second time on Wednesday.
Letters acknowledging complaints in regards to the technological meltdown on the bank have been despatched out to clients, however inside a variety of these mail-outs an additional letter had been included.
Isabella Morrison-Shand, of Inverness, obtained one and advised BBC 5 reside's Wake Up To Money programme: "When I seemed on the second web page I found that it had a reference quantity, identify and tackle of any individual that wasn't me.
"If I was in any way shady, I could contact them and say that I was from TSB and perhaps trick them into discussing things. I have no confidence in TSB at all of controlling their usage of my data and keeping it safe and secure."
A spokesperson for the bank stated: "We are aware that there has been issue with a recent acknowledgement mailing. We are working with our third party supplier to understand the root cause of the error and we'd like to apologise to anyone that may be impacted."
The Information Commissioner's Office, which polices knowledge safety guidelines, stated it was "continuing to make enquiries in relation to TSB and we are aware of ongoing issues. Customers who are concerned about their personal data can contact us".
Mr Mann, a member of the Treasury Committee, which is investigating the TSB saga, advised 5 reside: "They have broken the law. Even a small or minor breach of the law when it comes to data protection, is very, very important."
He added banks wanted to stick to the very best requirements on GDPR (General Data Protection Regulation).
"The Information Commissioner is not going to be impressed and will want to know exactly what's been going on. There is a danger action could be taken against the bank," he stated.
Fraud alert
Data safety skilled Ardi Kolah stated it was worrying that the bank was not prepared for the brand new laws.
Mr Kolah, the director of the GDPR Programme at Henley Business School and writer of the GDPR Handbook, added it was "interesting" that the banking watchdog had not commented on the state of affairs.
"One of the things the FCA has been doing is ringing round and checking and making sure the market works. This is quite clearly not how it should be working".
Mr Kolah additionally added the bank's issues might probably trigger a lot of injury.
"If a bank is seen to be a bit wobbly, all the criminals out there go 'this is an opportunity to go in there and steal people's data'."
Meanwhile, fraudsters look like making the most of the disruption at TSB.
Warnings have been issued about phishing scams the place clients have been contacted by textual content in a try and get them to disclose their account particulars.
Elsewhere, "sim swapping"during which fraudsters take over somebody's cell phone to allow them to get an authorisation code from a bankhas been used. Ronnie, a service provider seaman from Scotland, advised BBC Radio four's Money Box programme he had £13,000 taken from his account on this method.