Regarding false claims about alleged data leaks from the IDDEEA BiH system published by crna-hronika.info
The Agency for Identification Documents, Registers, and Data Exchange of Bosnia and Herzegovina (IDDEEA BiH) firmly and unequivocally rejects the false, alarming, and unverified allegations made by Mr. Hadžib Salkić, which claim a supposed leak of citizens’ personal data from systems under the Agency’s control. These allegations were published on the following portal:
Mr. Salkić presented a series of accusations without any technical evidence, forensic analysis, or prior consultation with relevant institutions. His statements are unfounded, lack context, and are not supported by any factual or systemic basis.
IDDEEA BiH stresses that:
There has been no recorded or confirmed security breach, data leak, or attempt to compromise systems managed by the Agency.
The central database of citizens’ personal data, managed by IDDEEA, is under constant monitoring, robust protection, and ongoing technical and security upgrades aligned with top international standards.
Not a single official institution — including SIPA (State Investigation and Protection Agency), the Personal Data Protection Agency, or the Prosecutor’s Office of BiH — has issued a warning, report, or request for investigation in connection with the claims made by Mr. Salkić.
The Agency asks publicly:
If Mr. Salkić possesses concrete evidence of a data breach, why did he not submit it to the appropriate authorities? Instead, why use it to spread fear and panic?
In response, IDDEEA BiH has formally requested that SIPA urgently investigate the claims made by Mr. Salkić.
If the allegations are true, action must be taken immediately.
If they are false, there must be consequences for spreading misinformation that undermines public trust in state institutions.
Labelling IDDEEA as an “accomplice” in identity-related crime is not only false — it is a direct attack on the legal framework of the state and a smear attempt against an institution tasked with protecting and developing BiH’s digital identity infrastructure.
IDDEEA BiH reminds the public that:
- It conducts regular independent security audits in cooperation with international partners and EU institutions;
- Its systems have never been compromised, nor are they linked in any way to the alleged database of “47,000 identities” cited by Mr. Salkić;
- Mr. Salkić has never contacted the Agency for support, access, or technical cooperation regarding any of his claims.
Therefore, we urge media outlets, journalists, and citizens to distinguish between facts and sensationalism, between professional conduct and irresponsibility.
IDDEEA BiH remains fully open to cooperation with all competent authorities — including prosecutors, investigative bodies, and technical experts. However, it also warns that it will no longer tolerate public attacks based on fabrications, political motives, fear-mongering, or personal agendas that threaten the integrity of a system of national importance.
Protecting the identity of BiH citizens is not a tool for manipulation, political gain, or self-promotion — it is a matter of national security.
Agency for Identification Documents, Registers and Data Exchange of Bosnia and Herzegovina (IDDEEA BiH)