Heidi: The Logging System Behind the Benefits Website

Heidi: The Logging System Behind the Benefits Website

17 May 2026 · 3 min read confirmed
John van der Velden
John van der Velden
Independent Researcher
Belastingdienst Dienst Toeslagen Deloitte
Heidi surveillance toeslagen portaldata profilering Belastingdienst

From mid-2013, the Belastingdienst/Toeslagen operated Heidi, a logging system that collected portal data from the benefits website including user behavior patterns. The system ran for approximately four years until its logs were deleted or transferred in September 2017. Combined with Deloitte's risk models and the broader surveillance infrastructure, Heidi forms part of a pattern of covert data collection on citizens interacting with government services.

Summary

From mid-2013, the Belastingdienst/Toeslagen operated Heidi, a logging system that collected portal data from the benefits website. The system tracked user behavior — visits, clicks, form interactions — for approximately four years until its log files were deleted or transferred in September 2017. Heidi was deployed in the same period as Deloitte’s risk classification models that used nationality as fixed source data, forming part of a pattern of covert digital surveillance on citizens applying for benefits.

Context

What was Heidi?

According to parliamentary documents (Kamervragen kst-31066-1330), Heidi was a logging system deployed by the Belastingdienst/Toeslagen from mid-2013. It collected portal data — information about how users interacted with the benefits website, including navigation patterns, form completion behavior, and click data.

The broader surveillance landscape

Heidi did not operate in isolation. In the same period:

  • Deloitte’s risk models (from June 2013): SAS-based classification models for childcare and housing allowances using “BVR Nationaliteit” as fixed source data, trained on only 200 examples.
  • RAM (1998-2018): The Risk Assessment Model profiling virtually all taxpayers, including scraped internet data from 2015.
  • FSV (2007-2020): The Fraud Signalling Facility registering ~180,000 citizens as fraud suspects.
  • SyRI’s predecessor “Black Box”: Operated for years without a separate legal basis until Wet SUWI art. 64-65 took effect on 1 January 2014.

Note on “Heide2”

The verified system name is “Heidi” as documented in parliamentary questions. The term “Heide2” has not been confirmed in official sources and may refer to an internal name, a successor system, or a misunderstanding. This distinction is important for accuracy.

What happened

  1. Mid-2013: Heidi is deployed on the benefits website, logging portal data from visitors.
  2. 2013-2017: For approximately four years, user behavior data is collected from citizens interacting with the benefits website.
  3. September 2017: Heidi log files are deleted or transferred. The reason and destination are not publicly documented.
  4. 2018 onwards: No public disclosure of Heidi’s existence or scope until parliamentary questions.

The timing is significant: Heidi was deployed in the same period as the Deloitte risk models and the intensification of fraud detection under the Ministerial Commission on Fraud Approach (2013-2015).

Evidence

SourceKey Finding
Kamervragen kst-31066-1330Confirms Heidi operational from mid-2013, logs deleted/transferred September 2017
Deloitte meeting report (3 June 2013)“BVR Nationaliteit” as fixed source data in risk models
WRR Working Paper 021 (April 2016)Describes BI&A unit of ~40 young academics processing data from 11 million citizens
AP report (July 2025)“The Belastingdienst took privacy law not seriously”
Algoritmeregister (April 2026)68 registered algorithms, 65 classified as “impactful”, 50+ deemed discriminatory

Analysis

  • AVG/GDPR art. 5(1)(b) (purpose limitation): Portal data collected for service delivery may have been repurposed for risk profiling without a separate legal basis.
  • AVG/GDPR art. 13/14 (information obligation): Citizens visiting the benefits website were likely not informed that their behavior was being logged and potentially used for fraud detection.
  • AVG/GDPR art. 22 (automated decision-making): If Heidi data fed into risk scores that influenced benefit decisions without human intervention, this constitutes automated decision-making with legal effects.
  • ECHR art. 8 (private life): Covert collection of behavioral data from government website visitors.

Unanswered questions

  1. What specific data points did Heidi collect? (clicks, mouse movements, time on page, form field interactions?)
  2. Was Heidi data linked to individual BSNs or used for risk scoring?
  3. Was Heidi data fed into Deloitte’s risk models or other decision systems?
  4. Why were the logs deleted in September 2017 — was this related to the upcoming GDPR?
  5. Did Heidi have a DPIA (Data Protection Impact Assessment)?
  6. Is there a “Heide2” successor system currently operational?

Sources

  • Kamervragen kst-31066-1330 — Toeslagenaffaire, vergaderjaar 2021-2022
  • PwC, Onderzoek effecten FSV MKB, 17 maart 2022
  • KPMG, Rapport onderzoek RAM, 25 februari 2025
  • Autoriteit Persoonsgegevens, Onderzoek RAM en vergelijkbare systemen, 9 juli 2025
  • WRR Working Paper 021, april 2016 (ISBN 978-94-90186-30-2)
  • Belastingdienst Algoritmeregister, april 2026

Sources

  1. Kamervragen kst-31066-1330 — Heidi loggingsysteem
  2. PwC werkdocument FSV-effecten, februari 2022
  3. KPMG Rapport RAM, februari 2025
  4. AP-rapport RAM en vergelijkbare systemen, juli 2025
  5. WRR Working Paper 021, april 2016
John van der Velden

John van der Velden

Independent Researcher · Open Brief Network

Independent researcher focused on institutional systems, accountability, and administrative processes. Background in network architecture, infrastructure integrity, and process optimisation.

Based in Croatia · Investigative Archive · Systems & Accountability
Full profile →

Case Documents: toeslagenaffaire

RIEC/LIEC: How Tax Data Flowed to Crime-Fighting Centers Without Citizens' Knowledge RAM and SME Profiling: The Tip of the Iceberg Entrepreneur Damage in the Toeslagenaffaire: A Systematic Exclusion Fictitious Employment Relationship: The 2014 Project Plan and Its Link to the Childcare Benefits Scandal Government Algorithms and Rights Violations at the Belastingdienst Recovery Organizations: Radar, SGH, and MijnHerstel — State-Funded Inadequate Compensation Information Point Childcare Benefits: An Inactive Archive While Government Pages Disappear Knowledge Update April 2026: Literature, Legislation, and Breaking Developments Open Data Portals for Toeslagenaffaire Research: Access and Limitations Signaling Systems: How Belastingdienst Data Flows to Municipalities Causal Link: How the FSV Destroyed Entrepreneurs Jurisprudence Timeline: Key Rulings in the Toeslagenaffaire (1988-2026) Source Research Overview: 20+ Legal Information Sources on Toeslagenaffaire Toeslagenaffaire Government Portal Research: Parliamentary Debates and FSV Victims Legal Framework Violations: 75+ Legal Articles Affected by the Childcare Benefits Scandal Data Vault: 64 Million Hidden Files Discovered at Belastingdienst The Data Vault: GDPR Measures and Hidden Evidence at Toeslagen Toeslagenaffaire Bookwork: Comprehensive WOO Document Dossier Legal Analysis Personal Case Timeline CWS Termination: Shift from Actual Damages to Forfaitary Compensation CWS Termination: End of Administrative Law Damage Route and Inflation Gap Civil Liability of the State, Deloitte and BCG CWS Compensation Calculation and Jurisprudence: Structural Undercompensation Confirmed Work Instructions Reveal Automated Denial of Debt Relief for Benefits Victims Recovery Operation as Instrument to Limit Civil Claims — Childcare Benefits Scandal Involved Departments and Parties — Institutional Structure of the Childcare Benefits Scandal WRR Working Paper 21: Big Data Fraud Prevention — Pre-Scandal Warning Deloitte Built Risk Models with Nationality as Structural Data Input

Related Topics

RIEC/LIEC: How Tax Data Flowed to Crime-Fighting Centers Without Citizens' Knowledge RAM and SME Profiling: The Tip of the Iceberg Data Vault: 64 Million Hidden Files Discovered at Belastingdienst

Related Entities

RIEC/LIEC: How Tax Data Flowed to Crime-Fighting Centers Without Citizens' Knowledge RAM and SME Profiling: The Tip of the Iceberg Entrepreneur Damage in the Toeslagenaffaire: A Systematic Exclusion Fictitious Employment Relationship: The 2014 Project Plan and Its Link to the Childcare Benefits Scandal Government Algorithms and Rights Violations at the Belastingdienst

Case Timeline

High importance Medium Low
1998-01-01/2018-05-24
system_operation RAM operational: 20 years of covert profiling of citizens and entrepreneurs Heidi: The Logging System Behind the Benefits Website
2007-01-01
system_launch FSV becomes operational — registers citizens without verification Heidi: The Logging System Behind the Benefits Website
2013-06-03
policy_decision Deloitte builds risk models with nationality as fixed source data Heidi: The Logging System Behind the Benefits Website
2013-06-03
policy_decision Deloitte builds risk models with nationality data Heidi: The Logging System Behind the Benefits Website
2013-06-03
policy_change Deloitte meeting on risk classification progress Heidi: The Logging System Behind the Benefits Website
2014-05-08
policy_change Projectplan Fictitious Employment Relationship finalized Heidi: The Logging System Behind the Benefits Website
2016-04-28
policy_change WRR publishes Working Paper 21 on Big Data fraud prevention Heidi: The Logging System Behind the Benefits Website
2016-07-18
policy_change Internal roadmap presentation reveals fraud detection structure Heidi: The Logging System Behind the Benefits Website
2019-05-16
policy_decision IV&D creates data vault as emergency GDPR measure Heidi: The Logging System Behind the Benefits Website
2019-05-25
deadline GDPR deadline passes — Belastingdienst not compliant Heidi: The Logging System Behind the Benefits Website
2020-01-01
legal_framework WAMCA collective action framework enters into force Heidi: The Logging System Behind the Benefits Website
2020-02-27
system_shutdown FSV shut down after AP finds practices unlawful and discriminatory Heidi: The Logging System Behind the Benefits Website
2020-03-01
policy_omission Compensation framework excludes entrepreneurs Heidi: The Logging System Behind the Benefits Website
2020-12-22
policy_change Catshuis decision: €30,000 flat-rate compensation for all victims Heidi: The Logging System Behind the Benefits Website
2020-12-22
policy_change Catshuis agreement establishes forfaitary compensation framework Heidi: The Logging System Behind the Benefits Website
2022-09-20
government_action OGS calculation basis changed from assessment to recovery amount Heidi: The Logging System Behind the Benefits Website
2022-12-23
ruling Supreme Court confirms Art. 6:248(2) BW applies to government settlements Heidi: The Logging System Behind the Benefits Website
2023-12-05
government_action Last update of Informatiepunt Kinderopvangtoeslag Heidi: The Logging System Behind the Benefits Website
2025-06-01
policy_change Belastingdienst launches early-warning pilot with 10 municipalities Heidi: The Logging System Behind the Benefits Website
2025-06-19
ruling Court awards €30,000 of €654,159 claimed — 4.6% coverage Heidi: The Logging System Behind the Benefits Website
2025-06-19
ruling Court rejects €654K claim, confirms Wht flat-rate limits Heidi: The Logging System Behind the Benefits Website
2025-06-19
legal_action First civil ruling on compensation level Heidi: The Logging System Behind the Benefits Website
2025-07-01
discovery Data vault rediscovered with potentially relevant PEFD documents Heidi: The Logging System Behind the Benefits Website
2025-07-02
court_ruling ABRvS closes door on higher forfait compensation Heidi: The Logging System Behind the Benefits Website
2025-10-11
legal_action AP rules 50+ Belastingdienst algorithms discriminatory Heidi: The Logging System Behind the Benefits Website
2025-11-25
ruling Court rules on SBN debt relief for benefits victim Heidi: The Logging System Behind the Benefits Website
2025-12-02
government_action MijnHerstel online platform launched Heidi: The Logging System Behind the Benefits Website
2026-02-27
government_action CWS stops accepting new cases Heidi: The Logging System Behind the Benefits Website
2026-03-19
policy_change CWS officially stops accepting applications; 7,000 redirected to SGH/MijnHerstel Heidi: The Logging System Behind the Benefits Website
2026-03-19
policy_change Latest parliamentary debate on 22nd progress report with 7 commitments Heidi: The Logging System Behind the Benefits Website
2026-03-19
policy_change CWS stops accepting applications; 7,000 parents redirected to forfaitary routes Heidi: The Logging System Behind the Benefits Website
2026-04-14
policy_change Wettelijke rente mass payouts begin; new UHT director appointed Heidi: The Logging System Behind the Benefits Website
2026-04-15
policy_change Cabinet reveals 64 million hidden files to parliament, 9 months after discovery Heidi: The Logging System Behind the Benefits Website
2026-04-15
disclosure Cabinet informs parliament — nine months after discovery Heidi: The Logging System Behind the Benefits Website
2026-04-19
investigation Comprehensive legal framework analysis published — 75+ statutory provisions identified across constitutional, administrative, civil, criminal, European, and international law Heidi: The Logging System Behind the Benefits Website
2026-04-22
investigation Inspectie OE launches investigation into data vault evidence gaps Heidi: The Logging System Behind the Benefits Website
2026-04-22
investigation Inspectie OE launches preliminary investigation into data vault Heidi: The Logging System Behind the Benefits Website
2026-04-23
research Open data portals mapped for toeslagenaffaire research Heidi: The Logging System Behind the Benefits Website