Election Commission Suspends NID Verification By BRAC and Ansar Bank
Election Commission Suspends NID Verification By BRAC and Ansar Bank. The Election Commission (EC) of Bangladesh has halted NID verification services for BRAC Bank and Ansar-VDP after confirming a serious data breach originating from these institutions.
Data Leak Triggers Immediate Suspension
The decision was announced by ASM Humayun Kabir, Director General of the EC’s National Identity (NID) Wing, during a press briefing held at the Election Commission headquarters in Agargaon, Dhaka.
He disclosed that evidence from a routine monitoring operation suggested these two organizations were illegally accessing or leaking NID data.
Quote from EC Official
“During our regular security checks yesterday, our monitoring team noticed unusual activity. After more profound analysis, we traced the source of the data leak to two institutions, Ansar and Village Defense Party (VDP) and BRAC Bank,” said Mr. Kabir.
Formal Investigation Underway
The Election Commission of Bangladesh has already launched a formal investigation into the matter. Specialized teams are currently working to identify how the breach in data security occurred, who was responsible, and what preventive measures must be adopted moving forward.
Monitoring Mechanism and Discovery
According to the NID wing chief, the EC routinely assigns internal cybersecurity teams to track and monitor NID data access across partnered institutions.
One such check flagged irregularities. A subsequent in-depth technical audit traced the data trail back to the networks of Ansar VDP and BRAC Bank, pinpointing them as the exact source of unauthorized access.
Action Plan Against Data Breach in Bangladesh
The EC has reassured citizens that all possible measures are being taken to contain the data leak and prevent further misuse of sensitive national identity information. “Our technical teams are actively working to seal the breach and strengthen our verification systems,” stated Mr. Kabir.
He also emphasized that cybersecurity is now one of the top priorities for the commission, especially given the expanding digital governance and reliance on the NID system for financial, administrative, and security-related services.
Growing List of Suspended Entities
With the suspension of BRAC Bank and Ansar-VDP, the number of institutions blacklisted from NID verification services has now increased. Five other organizations faced suspension for similar reasons in February 2025, indicating a concerning trend in the mishandling of digital data by third-party organizations.
| Date | Institution | Reason |
|---|---|---|
| Feb 2025 | 5 unnamed organizations | Suspected data leak |
| May 2025 | BRAC Bank & Ansar-VDP | Confirmed data leak |
This highlights the growing concern around data protection laws and the need for digital transparency in both government and private sectors in Bangladesh.
186 Institutions Still Retain Access
Despite the recent breaches, the EC continues to provide NID verification services to 186 verified institutions across Bangladesh. These services are critical for national security, banking services, mobile SIM registration, and other official uses.
However, the EC has warned that institutions failing to maintain strict cybersecurity protocols will face immediate suspension and legal consequences under the Digital Security Act of Bangladesh.
Public Awareness and Cyber Responsibility
As NID data becomes a key part of national infrastructure, both public and private entities must adopt international cybersecurity standards and best practices to avoid such breaches in the future. Moreover, digital literacy and public awareness campaigns must be prioritized to ensure data is not exploited.
Recommendations
- All institutions must conduct regular internal audits on data access.
- Two-factor authentication should be mandatory for sensitive data access.
- Organizations in the financial and paramilitary sectors must start cybersecurity training programs.
Conclusion
All institutions handling personal data in Bangladesh should take note of the suspension of BRAC Bank and Ansar VDP from accessing the NID verification portal. The Election Commission has taken a firm stance to protect citizen data, and it is now up to partnered institutions to ensure compliance with strict digital protocols.
