DigiD, the online gateway used by Dutch government agencies, health insurers and other personal services, was suspended for around two hours on Monday by a cyberattack.

A spokesman confirmed to the Telegraaf that users had been unable to log in from 11am, adding: “We are still investigating the situation.”

Users reported on allestoringen.nl, a website that monitors disruptions to online services, that they were unable to receive SMS codes needed to authenticate their login. The service started to come back online at around 1pm.

It is at least the second time in four months that DigiD has been targeted in a denial of service (DDoS) attack, after some users were unable to login last November.

MPs have expressed concerns in recent months about the takeover of Solvinity, the cloud company that manages DigiD, by the US-based Kyndryl, which would bring it within US government jurisdiction.

Under the US Cloud Act, service providers based in the United States can be compelled to share confidential data with the government, even if the information is based in Europe.

GroenLinks-PvdA MP Barbara Kathmann has warned that the buyout would allow the Trump administration to “turn off our digital government with one flick of the switch”.

Silvio Erkens, of the right-wing liberal VVD, has called for the Dutch government to block the deal on national security grounds unless it receives legal guarantees that Solvinity can keep the data secure.