The Minnesota Department of Public Safety Driver and Vehicle Services is sending letters to approximately 3,700 people who may have had their vehicle registration data illegally accessed.
The DVS audit found an employee at a Minnesota car dealership, who was authorized to access vehicle data to process car sales, allegedly provided his system login to a friend who worked at a repossession company. That friend either viewed the data or allowed others within the company to view the data.
Data that may have been viewed included information typically found on vehicle registrations: VIN numbers and vehicle descriptions, name, address, and date of birth of the vehicle owner.
Based on their initial investigation, DVS does not believe the illegally-accessed data was used for criminal purposes. But letters sent to affected Minnesotans recommend they consider monitoring their credit reports.
Evidence from the audit has been turned over to police for further investigation and possible criminal charges.
"Protecting private data is a priority for DVS, and we won't tolerate any illegal or unauthorized access of vehicle records," Public Safety Commissioner Mona Dohman said. "We will continue to aggressively monitor and audit the DVS system in order to prevent abuse and address any illegal activity."