Six fines issued for data breaches

 

Six public bodies were fined over personal data security breaches
in the last year despite hundreds of reported cases, a report said
today.

One of the biggest penalties went to Midlothian Council as it was fined £140,000 for sending details on children and their carers to the wrong people five times within 12 months.

Some 281 of the 730 reported breaches were a result of human error, with emails being sent by mistake and documents being sent to the wrong address, figures from the Information Commissioner's Office (ICO) showed.

A further 170 were due to data or hardware being stolen and another 108 were as a result of it being lost.

The figures, published by security firm ViaSat following a Freedom of Information Act request, also found 433 of the reported cases had yet to be decided.

Overall, staff in private firms appeared to be the worst offenders, accounting for more than a third (263) of reported breaches between between March 22 last year and February 17.

Healthcare providers including the NHS were responsible for 178 reported breaches, while councils and other local government organisations reported 166.

But the ViaSat report said that of the 297 cases reported and resolved within the time period, just six resulted in fines.

These included Midlothian Council, where children's social service reports were sent to the wrong recipients between January and June last year, causing "serious upset" to children's families.

The ICO's investigation found that all five breaches could have been avoided if the council had put adequate data protection policies, training and checks in place.

The council said at the time there was no evidence anyone had been put at risk and it "immediately took steps to retrieve the information, or have it destroyed, and voluntarily reported ourselves to the Information Commissioner".

No private firms or healthcare providers were fined.

A further 32 reports led to undertakings being signed and 259 resulted in neither fines nor undertakings.

Chris McIntosh, of ViaSat, said: "It is wholly disconcerting that those data breaches which should be easily avoidable are now the most commonplace.

"While the message on data protection may be getting through to the heads of organisations, there is no point in having these measures in place if workers don't follow them."

An ICO spokesman said: "Civil monetary penalties (CMPs) are part of a range of options that we use to protect the privacy rights of individuals, and ensure that organisations comply with the Data Protection Act (DPA).

"We can only issue CMPs where strict criteria are met - where the breach has caused substantial damage or distress to individuals or has the potential to do so, and in instances where the organisation was, or should have been, aware of the risk of a breach and failed to take reasonable steps to prevent it.

"We will always consider a CMP whenever these criteria are met, regardless of the sector the organisation falls into."

He went on: "Effective regulation is about getting the best result in the public interest.

"There are several types of enforcement action we can take, all of which help drive compliance with the DPA. The course we choose will always depend on the circumstances of the individual case."

PA

Start your day with The Independent, sign up for daily news emails
Have you tried new the Independent Digital Edition apps?
News
ebookA unique anthology of reporting and analysis of a crucial period of history
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

iJobs Job Widget
iJobs General

SThree: Trainee Recruitment Consultant

£18000 - £23000 per annum + Uncapped Commission: SThree: As a Trainee Recruitm...

SThree: Trainee Recruitment Consultant

£18000 - £23000 per annum + Uncapped Commission: SThree: As a Trainee Recruitm...

SThree: Trainee Recruitment Consultant

£13676.46 - £15864.28 per annum + Uncapped Commission: SThree: As a Trainee Re...

SThree: Trainee Recruitment Consultant

£18000 - £23000 per annum + Uncapped Commission: SThree: As a Trainee Recruitm...

Day In a Page

Raif Badawi: Wife pleads for fresh EU help as Saudi blogger's health worsens

Please save my husband

As the health of blogger Raif Badawi worsens in prison, his wife urges EU governments to put pressure on the Saudi Arabian royal family to allow her husband to join his family in Canada
Birthplace of Arab Spring in turmoil as angry Tunisians stage massive sit-in over lack of development

They shall not be moved: jobless protesters bring Tunisia to a halt

A former North African boom town is wasting away while its unemployed citizens stick steadfastly to their sit-in
David Hasselhoff's new show 'Hoff the Record': What's it like working with a superstar?

Hanging with the Hoff

Working with David Hasselhoff on his new TV series was an education for Ella Smith
Can Dubai's Design District 'hipster village' attract the right type of goatee-wearing individualist?

Hipsters of Arabia

Can Dubai’s ‘creative village’ attract the right type of goatee-wearing individualist?
The cult of Roger Federer: What is it that inspires such obsessive devotion?

The cult of Roger Federer

What is it that inspires such obsessive devotion?
Kuala Lumpur's street food: Not a 'scene', more a way of life

Malaysian munchies

With new flights, the amazing street food of Kuala Lumpur just got more accessible
10 best festival beauty

Mud guards: 10 best festival beauty

Whether you're off to the Isle of Wight, Glastonbury or a local music event, we've found the products to help you
Unai Emery’s passion for winning and eye for a bargain keep Seville centre stage in Europe

A Different League

Unai Emery’s passion for winning and eye for a bargain keep Seville centre stage in Europe, says Pete Jenson
Amir Khan and James DeGale’s remarkable Olympic performances were just the start of an extraordinary journey - Steve Bunce

Steve Bunce on Boxing

Amir Khan and James DeGale’s remarkable Olympic performances were just the start of an extraordinary journey
Abuse - and the hell that came afterwards

Abuse - and the hell that follows

James Rhodes on the extraordinary legal battle to publish his memoir
Why we need a 'tranquility map' of England, according to campaigners

It's oh so quiet!

The case for a 'tranquility map' of England
'Timeless fashion': It may be a paradox, but the industry loves it

'Timeless fashion'

It may be a paradox, but the industry loves it
If the West needs a bridge to the 'moderates' inside Isis, maybe we could have done with Osama bin Laden staying alive after all

Could have done with Osama bin Laden staying alive?

Robert Fisk on the Fountainheads of World Evil in 2011 - and 2015
New exhibition celebrates the evolution of swimwear

Evolution of swimwear

From bathing dresses in the twenties to modern bikinis
Sun, sex and an anthropological study: One British academic's summer of hell in Magaluf

Sun, sex and an anthropological study

One academic’s summer of hell in Magaluf