London Borough of Sutton agrees to improve security after breaching Data Protection Act
Printer friendly
The ICO has found London Borough of Sutton in breach of the Data Protection Act after several data security incidents. These included the loss of a paper file which contained personal data relating to 73 individuals receiving social care and the theft of two unencrypted laptops.
One laptop contained social care data of 39 individuals and the other contained information relating to nine children being taught by a teacher employed by the council. A package of documents also went missing when a courier used by the council left it with the recipient's neighbour.
Paul Martin, Chief Executive of London Borough of Sutton has agreed to ensure that portable and mobile devices, including laptops and other portable media used to store and transmit personal data are encrypted. Furthermore, the Borough has agreed to ensure security measures are adequate to prevent unauthorised and unlawful processing, accidental loss, destruction or damage. Staff will also be made aware of, and receive training on, the council's policy for the storage and use of personal information.
Sally-anne Poole, Head of Enforcement & Investigations at the ICO, said: 'It is vital that personal data is handled securely. This is an important principle of the Data Protection Act. I urge all organisations to implement the appropriate safeguards to ensure personal details are stored and processed securely. I am pleased with the remedial action the London Borough of Sutton has agreed to undertake to improve data security.'
Anyone who processes personal information must comply with eight principles, which make sure that personal information is:
a) Fairly and lawfully processed
b) Processed for limited purposes
c) Adequate, relevant and not excessive
d) Accurate and up to date
e) Not kept for longer than is necessary
f) Processed in line with your rights
g) Secure
h) Not transferred to other countries without adequate protection
- Login or Register to comment
- Add to a social bookmarking site
Editor's Manifesto: Tales of the entirely expected
"Several weeks into the new era of Coaltiion Government and certain key themes are emerging. First up, it's clear that the battle of the 'who can get their memoirs out the door quick enough to steal a march in the revisionist history stakes' has been triumphantly won by M'Lord Mandelson (Weren't those TV ads scary – the velvet smoking jacket, the leather fireside chair, all that Brillcream! The only thing missing was the theme tune to Tales of the Unexpected and the accompanying prancing sillouette of Harriet Harman or Diane Abbott dancing!)” Read more
The Dispatch Box: Data quality and the public sector
Colin Rickard, managing director EMEA at SAS subsidiary Dataflux, argues public sector data must be of high quality if the efficiencies promised with ICT and infrastructure is to be realised.
"Tackling the public sector’s data integration and data quality challenges is a tough prospect. The challenge may require more effort than a comparative project in a large private company. Data must be governed according to a strategy that necessitates bringing interested parties together.” Read more
Innovation: A step too far in the austerity age?
Complete and enter our draw to win a free seat at the e-Government Awards. The public sector is already perceived to be lacking in innovation, but is that a fair assessment, and what role could it play in helping the government meet efficiency targets? What do people working on the frontline of ICT in public sector organisations think? Take part and share your views
James Gardner, CTO at the Department for Work and Pensions discusses his thoughts on innovation in the public and commercial sectors.
Source: K2 Advisory