Illegal DMV Access Lands Repo Agency In Hot Water

The Minnesota Department of Public Safety Driver and Vehicle Services (DVS) has uncovered unauthorized access to motor vehicle records affecting approximately 3,700 Minnesotans, with a heavy focus on the involvement of an unnamed vehicle repossession agency. The breach was discovered during an internal DVS audit, which revealed that an employee at a Minnesota car dealership, authorized to access vehicle data for legitimate business purposes, allegedly shared their system login credentials with a friend employed at the repossession agency. This individual, who was not authorized to access Minnesota vehicle records, either personally viewed the data or permitted others within the repossession company to do so.

While a preliminary DVS investigation suggests the data was not used for criminal purposes, the agency is notifying affected individuals and advising them to monitor their credit reports. The unauthorized access, which violates both state and federal laws, has been reported to law enforcement for further investigation and potential criminal charges. The repossession agency’s role in the breach underscores the seriousness of the incident, as it highlights how sensitive personal information was improperly accessed and potentially misused by an entity with no legal right to the data.

“Protecting private data is a top priority for DVS, and we will not tolerate any illegal or unauthorized access to vehicle records,” stated Public Safety Commissioner Mona Dohman. “This incident, particularly the involvement of the repossession agency, is a stark reminder of the need for vigilance. We will continue to aggressively monitor and audit the DVS system to prevent abuse and address any illegal activity.” The case has drawn significant attention to the risks posed by third-party entities, such as repossession agencies, gaining illicit access to sensitive information, prompting calls for stricter oversight and accountability.