British Pregnancy Advice Services fined £200,000 after hacker stole information on thousands of women

 

Health Reporter

Britain’s largest provider of abortions has been fined £200,000 after a hacker was able to access the names, addresses and telephone numbers of thousands of women who had sought advice on abortion, pregnancy and contraception.

The British Pregnancy Advice Service (BPAS) had been guilty of an “unforgiveable” failure to secure women’s private information, the Information Commissioner’s Office (ICO) said, which allowed James Jeffery, a hacker associated with the global hacking group Anonymous, to access women’s details in March 2012.

Mr Jeffery, who was jailed for 32 months after being tracked by specialist e-crime police officers, had threatened to publish the information and posted anti-abortion messages on BPAS’s website.

The charity said yesterday that it was “horrified” by the scale of the fine, adding that it had been “a victim of a serious crime by someone opposed to what we do” and would appeal the Information Commissioner’s decision. Ann Furedi, the charity’s chief executive, said that, as a hacker who opposed abortion, Mr Jeffery was being “rewarded” by such a heavy fine being imposed on an abortion provider.

An ICO investigation found that BPAS had not realised that its website had stored the names, addresses, dates of birth and telephone number of people who had asked for a call back for advice on pregnancy issues. A vulnerability in the website’s coding “allowed the hacker to access the system and locate the information”, the ICO said.

David Smith, the ICO’s deputy commissioner and director of data protection, said that “ignorance” was “no excuse” for health organisation’s holding personal data.

“Data protection is critical and getting it right requires vigilance…” he said. “It is especially unforgiveable when the organisation is handling information as sensitive as that held by BPAS. Data controllers must take active steps to ensure that the personal data they are responsible for is kept safe.”

BPAS alerted the police immediately after the hacking and sought an injunction against the information being published. Mr Jeffery was arrested at his home in the West Midlands after police tracked him through his computer’s IP address.

Ms Furedi said that BPAS accepted that “no hacker should have been able to steal data” but challenged the scale of the ICO’s penalty.

“BPAS is a charity which spends any proceeds on the care of women who need our help and on improving public education and knowledge on contraception, fertility and unplanned pregnancy,” she said. “This fine seems out of proportion when compared with those levelled against other organisations who were not themselves the victims of a crime. It is appalling that a hacker who acted on the basis of his opposition to abortion should see his actions rewarded in this way.”

Mr Jeffery attacked the site because of his objection to the decision of two women he knew to seek abortion, Southwark Crown Court heard during his trial in April 2012.

He wrote on the BPAS website: “An unborn child does not have an opinion, a choice or any rights. Who gave you the right to murder an unborn child and profit from that murder?”

The fine comes amid an atmosphere of heightened concern around the security of patient data held by healthcare organisations. Plans to extract patient records from every GP surgery in England and keep them in a central database have been delayed to give the NHS time to reassure the public that the data will be secure and put to appropriate uses.

The privacy campaign group Medconfidential told The Independent that BPAS’s experience illustrated the importance of healthcare organisations ensuring their data is protected “with the highest level of security”.

Start your day with The Independent, sign up for daily news emails
Voices
Barn owls are among species that could be affected
charity appeal
Sport
After another poor series in Sri Lanka, Alastair Cook claimed all players go through a lean period
cricketEoin Morgan reportedly to take over ODI captaincy as ECB finally wield the axe
Arts and Entertainment
a clockwork orange, stanley kubrick
film
News
news... you won't believe how bad their skills were
ebooks
ebooksA year of political gossip, levity and intrigue from the sharpest pen in Westminster
Latest stories from i100
Have you tried new the Independent Digital Edition apps?

Day In a Page

Homeless Veterans appeal: 'You look for someone who's an inspiration and try to be like them'

Homeless Veterans appeal

In 2010, Sgt Gary Jamieson stepped on an IED in Afghanistan and lost his legs and an arm. He reveals what, and who, helped him to make a remarkable recovery
Could cannabis oil reverse the effects of cancer?

Could cannabis oil reverse effects of cancer?

As a film following six patients receiving the controversial treatment is released, Kate Hilpern uncovers a very slippery issue
The Interview movie review: You can't see Seth Rogen and James Franco's Kim Jong Un assassination film, but you can read about it here

The Interview movie review

You can't see Seth Rogen and James Franco's Kim Jong Un assassination film, but you can read about it here
Serial mania has propelled podcasts into the cultural mainstream

How podcasts became mainstream

People have consumed gripping armchair investigation Serial with a relish typically reserved for box-set binges
Jesus Christ has become an unlikely pin-up for hipster marketing companies

Jesus Christ has become an unlikely pin-up

Kevin Lee Light, aka "Jesus", is the newest client of creative agency Mother while rival agency Anomaly has launched Sexy Jesus, depicting the Messiah in a series of Athena-style poses
Rosetta space mission voted most important scientific breakthrough of 2014

A memorable year for science – if not for mice

The most important scientific breakthroughs of 2014
Christmas cocktails to make you merry: From eggnog to Brown Betty and Rum Bumpo

Christmas cocktails to make you merry

Mulled wine is an essential seasonal treat. But now drinkers are rediscovering other traditional festive tipples. Angela Clutton raises a glass to Christmas cocktails
5 best activity trackers

Fitness technology: 5 best activity trackers

Up the ante in your regimen and change the habits of a lifetime with this wearable tech
Paul Scholes column: It's a little-known fact, but I have played one of the seven dwarves

Paul Scholes column

It's a little-known fact, but I have played one of the seven dwarves
Fifa's travelling circus once again steals limelight from real stars

Fifa's travelling circus once again steals limelight from real stars

Club World Cup kicked into the long grass by the continued farce surrounding Blatter, Garcia, Russia and Qatar
Frank Warren column: 2014 – boxing is back and winning new fans

Frank Warren: Boxing is back and winning new fans

2014 proves it's now one of sport's biggest hitters again
Jeb Bush vs Hillary Clinton: The power dynamics of the two first families

Jeb Bush vs Hillary Clinton

Karen Tumulty explores the power dynamics of the two first families
Stockholm is rivalling Silicon Valley with a hotbed of technology start-ups

Stockholm is rivalling Silicon Valley

The Swedish capital is home to two of the most popular video games in the world, as well as thousands of technology start-ups worth hundreds of millions of pounds – and it's all happened since 2009
Did Japanese workers really get their symbols mixed up and display Santa on a crucifix?

Crucified Santa: Urban myth refuses to die

The story goes that Japanese store workers created a life-size effigy of a smiling "Father Kurisumasu" attached to a facsimile of Our Lord's final instrument of torture
Jennifer Saunders and Kate Moss join David Walliams on set for TV adaptation of The Boy in the Dress

The Boy in the Dress: On set with the stars

Walliams' story about a boy who goes to school in a dress will be shown this Christmas