2.2 The Defence Afghan Relocations Assistance Policy (ARAP) Casework System (DACS) was introduced in May 2022. It is used for ARAP and Afghan Response Route eligibility case- working. DARR have recently included a limited number of ACRS details into DACS to assist with cross-government resettlement work however the majority of ACRS data is managed on Home Office systems. 2.3 The introduction of DACS addressed many of the vulnerabilities, including stricter access controls, audit logs, and protocols to limit data sharing outside secure systems. DACS undergoes maintenance and improvements on a regular basis to mitigate against the risk of a future data incident. 2.4 While sharing personal data with trusted third parties outside of central Government remains crucial in verifying applications, the completion of data sharing agreements and data protection impact assessments enables the department to manage the associated risks. There are numerous data sharing agreements in place to facilitate this and in January 2025, the department introduced new software that enhances our ability to securely share data with partners for the purposes of administering the ARP. 2.5 The department continues to enhance technical controls that seek to address the likely causes of a data incident as part of its cyber security programme. Through these technical improvements, the department is equipped with the right tools to minimise the risk of a recurrence of the February 2022 data incident or similar.