Skip to main content
Netherlands News in English

Main navigation

  • Top stories
  • Health
  • Crime
  • Politics
  • Business
  • Tech
  • Culture
  • Sports
  • Weird
  • 1-1-2
Image
Hacker_-_Hacking_-_Symbol
Cybercrime file image - Credit: Rendering: www.elbpresse.de / Christoph Scholz / Flickr / Wikimedia Commons - License: CC-BY-SA
Business
Tech
HAN University of Applied Sciences
Arnhem
Nijmegen
General Data Protection Regulation
dutch data protection authority
hacked
Thursday, 18 December 2025 - 06:30

Share this article:

Dutch university hit with €175,000 fine after 2021 data breach

The Dutch Data Protection Authority (AP) has imposed a 175,000-euro fine on HAN University of Applied Sciences for breaching the General Data Protection Regulation, according to the AP. The probe was initiated following a 2021 hack that the university reported to the AP.

The Authority’s investigation found that HAN University of Applied Sciences had previously failed to implement adequate measures to safeguard the personal data of students, staff, and others. Through a web form, a hacker accessed HAN University’s web and database servers. The individual threatened to make personal data, including addresses, names, passwords, and citizen service numbers, public and unsuccessfully demanded ransom from the university.

Local reports suggest that the leaked data might have been posted online after the university declined the hacker’s ransom demand, although the university noted that certain information, including passwords, was no longer active.

The university notified individuals whose information might have been exposed, sending emails with warnings and advice to stay vigilant against phishing, spam, and identity theft.

The affected individuals included not only current students and employees but also alumni and anyone who had previously used the web form to inquire about the university’s programs or events.

Several (former) students have pursued legal action, seeking compensation for the breach’s impact on their privacy and trust. In a 2023 case, a former student received approximately 300 euros in damages after personal information, including medical details, was made public.

The fine represents a settlement, and HAN University, with campuses in Arnhem and Nijmegen, does not plan to contest it, the AP said.

Following the incident, HAN said it had strengthened its information and privacy security measures, introducing enhanced monitoring, raising staff awareness of cyber threats, and placing greater emphasis on General Data Protection Regulation compliance.

HAN has also introduced positions, including a Chief Privacy Officer and additional privacy and security officers (FG, PO), to enhance the safeguarding of personal data across the institution.

Reporting by ANP

More like this

Image
Ambulance in Rotterdam, Netherlands
One killed in Nijmegen fireworks accident just after midnight on New Year's
Image
Police officers in the Netherlands look out at a group of people on the street as fireworks explode over their head just after midnight on New Year's Day.
Zwolle joins 19 Dutch municipalities banning fireworks as national ban nears
Image
An apartment for sale in Amsterdam Oost. 7 October 2022
Homes in the Netherlands selling faster in 2025 despite price increases, higher volume
Image
A sinkhole near the A12 close to the German border as a result of Storm Benjamin, October 23, 2025.
Sinkhole on A12 near Arnhem sealed after days of traffic disruptions
Make NL Times your top Google source

Follow us:

Latest stories

  • Dutch intelligence agencies accused of privacy breaches in large-scale data processing
  • Police confirm missing Olympic short-track skater Sven Roes is alive and abroad
  • Amsterdam murder suspect denies killing his partner as court extends pretrial detention
  • Dutch inflation rate falls back below 3 percent as energy price spike flattens
  • Amsterdam debates making Keti Koti, slavery abolition celebration, a public holiday

Top stories

  • Dutch inflation rate falls back below 3 percent as energy price spike flattens
  • PFAS detected in all Dutch breast milk samples, but levels decline from 2014
  • Netherlands on track to build nearly 100,000 new homes in 2027, surge seen as temporary
  • Rotterdam-Zuid line closed until Saturday; No trains between Groningen and Zuidhorn
  • €3 import fee now applies to cheap packages from outside the EU

© 2012-2026, NL Times, All rights reserved.

Footer menu

  • Change Privacy Settings
  • Privacy Policy
  • Contact
  • Partner Content