British Pregnancy Advice Services fined £200,000 after hacker stole information on thousands of women

 

Health Reporter

Britain’s largest provider of abortions has been fined £200,000 after a hacker was able to access the names, addresses and telephone numbers of thousands of women who had sought advice on abortion, pregnancy and contraception.

The British Pregnancy Advice Service (BPAS) had been guilty of an “unforgiveable” failure to secure women’s private information, the Information Commissioner’s Office (ICO) said, which allowed James Jeffery, a hacker associated with the global hacking group Anonymous, to access women’s details in March 2012.

Mr Jeffery, who was jailed for 32 months after being tracked by specialist e-crime police officers, had threatened to publish the information and posted anti-abortion messages on BPAS’s website.

The charity said yesterday that it was “horrified” by the scale of the fine, adding that it had been “a victim of a serious crime by someone opposed to what we do” and would appeal the Information Commissioner’s decision. Ann Furedi, the charity’s chief executive, said that, as a hacker who opposed abortion, Mr Jeffery was being “rewarded” by such a heavy fine being imposed on an abortion provider.

An ICO investigation found that BPAS had not realised that its website had stored the names, addresses, dates of birth and telephone number of people who had asked for a call back for advice on pregnancy issues. A vulnerability in the website’s coding “allowed the hacker to access the system and locate the information”, the ICO said.

David Smith, the ICO’s deputy commissioner and director of data protection, said that “ignorance” was “no excuse” for health organisation’s holding personal data.

“Data protection is critical and getting it right requires vigilance…” he said. “It is especially unforgiveable when the organisation is handling information as sensitive as that held by BPAS. Data controllers must take active steps to ensure that the personal data they are responsible for is kept safe.”

BPAS alerted the police immediately after the hacking and sought an injunction against the information being published. Mr Jeffery was arrested at his home in the West Midlands after police tracked him through his computer’s IP address.

Ms Furedi said that BPAS accepted that “no hacker should have been able to steal data” but challenged the scale of the ICO’s penalty.

“BPAS is a charity which spends any proceeds on the care of women who need our help and on improving public education and knowledge on contraception, fertility and unplanned pregnancy,” she said. “This fine seems out of proportion when compared with those levelled against other organisations who were not themselves the victims of a crime. It is appalling that a hacker who acted on the basis of his opposition to abortion should see his actions rewarded in this way.”

Mr Jeffery attacked the site because of his objection to the decision of two women he knew to seek abortion, Southwark Crown Court heard during his trial in April 2012.

He wrote on the BPAS website: “An unborn child does not have an opinion, a choice or any rights. Who gave you the right to murder an unborn child and profit from that murder?”

The fine comes amid an atmosphere of heightened concern around the security of patient data held by healthcare organisations. Plans to extract patient records from every GP surgery in England and keep them in a central database have been delayed to give the NHS time to reassure the public that the data will be secure and put to appropriate uses.

The privacy campaign group Medconfidential told The Independent that BPAS’s experience illustrated the importance of healthcare organisations ensuring their data is protected “with the highest level of security”.

Sport
The sun rises over St Andrews golf course, but will it be a new dawn for the Royal and Ancient Golf Club?
sportAnd it's Yes to women (at the R&A)
Arts and Entertainment
Friends is celebrating its 20th anniversary this year
tvSeries celebrates 20th anniversary
Sport
Yaya Touré (left) and Bayern Munich’s Spanish defender Juan Bernat
footballToure's lack of defensive work is big problem for City
Voices
voicesApple continually kill off smaller app developers, and that's no good for anyone
News
ebooksAn unforgettable anthology of contemporary reportage
Arts and Entertainment
Liam Neeson said he wouldn't
tv

Liam Neeson's Downton dreams

Sport
Wembley Stadium
footballNews follows deal with Germany
Arts and Entertainment
A spell in the sun: Emma Stone and Colin Firth star in ‘Magic in the Moonlight’
filmReview: Magic In The Moonlight
Sport
A 'Sir Alex Feguson' tattoo
football

Arts and Entertainment
Ben Whishaw is replacing Colin Firth as the voice of Paddington Bear
tv

Thriller is set in the secret world of British espionage

Life and Style
life

News
ScienceGallery: Otherwise known as 'the best damn photos of space you'll see till 2015'
Life and Style
fashion

Bomber jacket worn by Mary Berry sells out within an hour

Latest stories from i100
Have you tried new the Independent Digital Edition apps?

Day In a Page

Mystery of the Ground Zero wedding photo

A shot in the dark

Mystery of the wedding photo from Ground Zero
His life, the universe and everything

His life, the universe and everything

New biography sheds light on comic genius of Douglas Adams
Save us from small screen superheroes

Save us from small screen superheroes

Shows like Agents of S.H.I.E.L.D are little more than marketing tools
Reach for the skies

Reach for the skies

From pools to football pitches, rooftop living is looking up
These are the 12 best hotel spas in the UK

12 best hotel spas in the UK

Some hotels go all out on facilities; others stand out for the sheer quality of treatments
These Iranian-controlled Shia militias used to specialise in killing American soldiers. Now they are fighting Isis, backed up by US airstrikes

Widespread fear of Isis is producing strange bedfellows

Iranian-controlled Shia militias that used to kill American soldiers are now fighting Isis, helped by US airstrikes
Topshop goes part Athena poster, part last spring Prada

Topshop goes part Athena poster, part last spring Prada

Shoppers don't come to Topshop for the unique
How to make a Lego masterpiece

How to make a Lego masterpiece

Toy breaks out of the nursery and heads for the gallery
Meet the ‘Endies’ – city dwellers who are too poor to have fun

Meet the ‘Endies’ – city dwellers who are too poor to have fun

Urbanites are cursed with an acronym pointing to Employed but No Disposable Income or Savings
Paisley’s decision to make peace with IRA enemies might remind the Arabs of Sadat

Ian Paisley’s decision to make peace with his IRA enemies

His Save Ulster from Sodomy campaign would surely have been supported by many a Sunni imam
'She was a singer, a superstar, an addict, but to me, her mother, she is simply Amy'

'She was a singer, a superstar, an addict, but to me, her mother, she is simply Amy'

Exclusive extract from Janis Winehouse's poignant new memoir
Is this the role to win Cumberbatch an Oscar?

Is this the role to win Cumberbatch an Oscar?

The Imitation Game, film review
England and Roy Hodgson take a joint step towards redemption in Basel

England and Hodgson take a joint step towards redemption

Welbeck double puts England on the road to Euro 2016
Relatives fight over Vivian Maier’s rare photos

Relatives fight over Vivian Maier’s rare photos

Pictures removed from public view as courts decide ownership
‘Fashion has to be fun. It’s a big business, not a cure for cancer’

‘Fashion has to be fun. It’s a big business, not a cure for cancer’

Donatella Versace at New York Fashion Week