Argentinian National Registry of Persons

The Argentinian National Registry of Persons, known by its Spanish acronym RENAPER, is the official government agency responsible for the registration, identification, and documentation of Argentina's citizens and residents. Its core function is the issuance and management of the Documento Nacional de Identidad (DNI), the mandatory national identity card that serves as the primary legal identification for all individuals within the country. This central role places RENAPER at the heart of administrative and civic processes, as the DNI is required for voting, accessing public services, banking, and employment. The agency maintains the definitive national database of personal identification details, including names, dates of birth, photographs, and unique identification numbers, making it a repository of highly sensitive citizen data for the entire population of Argentina. The scale of its operations is implicitly defined by its mandate to cover every resident, positioning it as a critical component of the state's infrastructure for citizen management and social inclusion.

A defining characteristic of RENAPER, as evidenced by a major documented security incident, is its history of systemic vulnerabilities in safeguarding the vast troves of personal data it controls. In September 2021, a hacker successfully compromised the agency's systems, exfiltrating the complete national ID database containing details for the entire population. The breach was executed through unauthorized access via a compromised Virtual Private Network (VPN) account belonging to the Ministry of Health, highlighting a significant security weakness in inter-agency access protocols. Despite initial government denials, the attacker provided concrete evidence of the stolen data, including records for public figures and the unique identification numbers of citizens. This incident was not isolated, following prior breaches targeting the same agency, which underscores a persistent challenge in protecting its critical information assets. The event illustrates RENAPER's dual position: as an indispensable national registry with a monopoly on official identification, and as an entity that has repeatedly failed to secure its systems against determined external threats, raising profound concerns about data privacy and governmental cybersecurity capacity. The agency's operational context is therefore inextricably linked to these documented failures, which have exposed the personal information of all Argentinians to potential misuse.