Bonum Certa Men Certa

EPO Had a Leakage Problem and Privacy of Stakeholders Was Compromised, Affecting at Least 100 Cases

Revelations from insiders

A coverup



Summary: The confidentiality principle was compromised at the EPO and stakeholders weren't told about it (there was a coverup)

A recent software issue concerning the EPO’s on-line filing services has affected at least 100 cases. On the EPO website it was described as “unexpected behaviour of the Online Filing software”. Internally it was called a “leakage”. While the incident may have affected the privacy of patent attorneys, law firms and applicants, the EPO users were not informed about these risks. Users were simply advised to install a software update as soon as possible.



The public announcements:

On 26 April 2019 users of the EPO’s on-line services were informed about a software issue:

Problems with Online Filing



We are experiencing unexpected behaviour of the Online Filing software. In order to avoid any impact on user operations and data, users are asked to check carefully the acknowledgment of receipt and inform the EPO Customer Services immediately in case of any irregularities. A software patch fixing the issue (epptch5464) has been prepared and is available for download.

We apologise for any inconvenience.



A new on-line filing software was made available later on the same day, together with the following message:

Online Filing software – new update now available



26 April 2019 update

The EPO is pleased to inform users of its Online Filing software that a replacement EP update 5.0.11.174 for Version 5.11 (build 5.0.11.173 or lower) is now available for download. This update replaces, but does not require deinstallation, of the previous updates issued on 1 April 2019 and 15 April 2019 and also resolves issues announced on 26 April 2019.

Users are advised to install this update as soon as possible.

Users who have activated the Live Update function will be notified automatically.

We apologise for any inconvenience.


The internal communication:

The following message was sent to a number of EPO managers and staff at the end of April 2019:

Support: The update of on-line filing (OLF) released on 01.04.2019 caused documents that were not attached by the user to the submissions to be nonetheless included with the submission and loaded into the TOC as INCANNEX. The package has since been withdrawn (Online Services) but it cannot be excluded that users having installed it have continued using it thereafter. D132 [Patent Procedures Management] has informed FOs [Formalities Officers] about the issue, and coordinated with OCFDs [Opposition and Central Formalities Directorates] for dealing with the 100 cases already affected by the leakage; the cases have been pointred [sic!] out by a query run by BIT [Business Information Technologies]. The internal process to deal with this emergency has worked smoothly thanks to the collaborations of all stakeholders (OCFDs, BIT and D132).


The principal issue is that confidential documents which are submitted to the EPO (via on-line filing) by accident are not recognised as confidential matter. There is no check in place for this purpose. It happened that private documents were published on the EPO website by accident. It is not known whether any of the applicants, law firms or patent attorneys was harmed by these incidents. Other incidents may not yet have been discovered. While the bug was discovered in the second half of April 2019, it is not known at what date and with which software version it was introduced.

Recent Techrights' Posts

Open Source Initiative (OSI) Privacy Fiasco in Detail: The OSI Does Not Respect Anybody's Privacy
The surveillance mafia that bans dissent or key people (even co-founders) with dissenting views
 
Links 31/03/2025: China Tensions, Bombs Falling in Myanmar After Earthquake
Links for the day
Gemini Links 31/03/2025: Falling Out of Love With Tech, Sunsetting openSNP
Links for the day
R.T.O. at IBM in Texas and Atlanta (State of Georgia) Expected as "Soft Layoffs" Catalyst This Coming Year
It also sounds like more IBM layoffs are in the making
Law Firms Can Also Lose Their Licence for Clearly Misusing It
The bottom line is, never made the false assumption that because you can pile up SLAPPs in a docket you will not suffer from bad reputation or even get disbarred
Link between institutional abuse, Swiss jurists, Debianism and FSFE
Reprinted with permission from Daniel Pocock
LLM Slop Piggybacking News About GNU/Linux and Distorting It
new examples
Links 31/03/2025: Press and Democracy Under Further Attacks in the US, Attitudes Towards Slop Sour
Links for the day
Gemini Links 31/03/2025: More X-Filesposting and Dreaming in Emacs
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, March 30, 2025
IRC logs for Sunday, March 30, 2025
Links 30/03/2025: Security Breaches, Crackdowns on Dissent/Rival Politicians
Links for the day
Gemini Links 30/03/2025: London Soundtrack Festival, Superbloom, gmiCAPTCHA
Links for the day
Phasing Out Vista 10 in Nations Where ~90% of Windows Users Still Rely on It
Recipe for another Microsoft disaster
The Cost of Pursuing the Much-Needed Reform/Shield Against Strategic Lawsuits Against Public Participation (SLAPPs)
“It is curious that physical courage should be so common in the world and moral courage so rare.”
The LLM Bubble is About to Implode, Gimmicks and Financial Shell Games Cannot Prevent That, Only Delay It
To inflate the bubble MElon is now doing the classic trick of buying from oneself for a fictional value
Links 30/03/2025: Contagious Ideas, Signal Leak, and Squashing Lousy Patents
Links for the day
Links 30/03/2025: "Quantum Randomness" and "F-1 Visa Revoked" in US
Links for the day
Gemini Links 30/03/2025: US as a Threat, Returning to the WWW
Links for the day
Links 30/03/2025: Judge Blocks Dismantling Of VOA, Turkey Arrested Many Journalists
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, March 29, 2025
IRC logs for Saturday, March 29, 2025
Judges Would Never Rule for Men Who Strangle Women or Against Women Who Merely Wrote Articles About Abuse They Had Received From Men
We don't intend to do "trial by media", so we won't be disclosing claims and defences until it's over
Windows is an Unnatural Disaster, It is Also Avoidable
there's a wide window of opportunity opening
Gemini Links 29/03/2025: Less YouTube and More Station
Links for the day
In Some Countries, Such as Thailand, Firefox is Already Measured at Less Than 2% (One Day Firefox Will Get Blocked, Not Only Lack Support)
Web consolidation around Chrom-isms will doom the Web as we know it
Killing the News With Spam and Slop Benefits Those Whose Desire is an Uninformed Population
adoption of Free software depends indirectly on political activities/activism
Links 29/03/2025: Trademarks Battles, Fires Destroy More Than 3,000 South Korean Homes
Links for the day
Open Source Initiative (OSI) Privacy Fiasco in Detail: An Introduction
Perhaps tomorrow or perhaps next week we'll share more information about what happened and what was reported to the California Privacy Protection Agency
Links 29/03/2025: More Crackdowns on Science, "Hey Hi" Slopping is Flopping
Links for the day
IBM's BS (Bait, Switch) Regarding Ways to Stay Onboard
PIPs, RTOs, and forced relocations are just an illusion of choice (or ability to recover)
Costa Rica Almost Bankrupt Because of Microsoft
the incidents in Costa Rica are Windows incidents
Gemini Links 29/03/2025: Art of Looking, Wireguard, EMacs
Links for the day
Links 29/03/2025: Attacks on Social Security and War Updates
Links for the day
Banned evidence: Ars Technica forums censored email predicting DebConf23 death, Abraham Raji & Debian cover-up
Reprinted with permission from Daniel Pocock
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, March 28, 2025
IRC logs for Friday, March 28, 2025