Crown Prosecution Service hit with £325k fine for losing DVDs with ‘most intimate details’ of abuse victims

Written by Sam Trendall on 18 May 2018 in News
News

After ICO punishment, CPS claims new digital evidence-transfer system will mean such a breach can never happen again

Credit: PA

After losing unencrypted DVDs containing footage of interviews with 15 victims of child sexual abuse, the Crown Prosecution Service has been hit with a £325,000 fine from the Information Commissioner’s Office.

In response to the punishment, the CPS said that it is rolling out a digital system for transferring evidence to ensure it never again needs to rely on sending sensitive information through the post.

The lost discs “contained the most intimate sensitive details of the victims, as well as the sensitive personal data of the perpetrator, and some identifying information about other parties”, the ICO said. 

In November 2016 they were sent from one CPS office to another via tracked delivery.

The office where they were received was shared by CPS with other organisations. The DVDs, which were “not in tamper-proof packaging”, were sent outside office hours, and were left in the building’s shared reception area, according to the ICO.


Related content


Having gone missing, their loss was not discovered for a month. Victims were not told until March 2017, and the ICO was informed in April. 

It is still not known what happened to the DVDs.

The ICO pointed out that the CPS suffered a data breach in which video evidence was lost  – for which it was fined £200,000 about a year before this incident took place. Despite which, the CPS failed to make sure that “appropriate care was being taken to avoid similar breaches”.

Steve Eckersley, head of enforcement at the ICO, said: “The victims of serious crimes entrusted the CPS to look after their highly sensitive personal data – a loss in trust could influence victims’ willingness to report serious crimes. The CPS failed to take basic steps to protect the data of victims of serious sexual offences. Given the nature of the personal data, it should have been obvious that this information must be properly safeguarded, as its loss could cause substantial distress.

He added: “The CPS must take urgent action to demonstrate that it can be trusted with the most sensitive information.”

A spokesperson for the CPS said that the service is currently implementing a digital system “that allows the secure online transfer of material between the CPS and the police”, including sending video interviews. The introduction of this system “will mean we no longer need to rely on sending discs through the mail”, they said.

“We accept the ICO’s decision that we breached the Data Protection Act and last year contacted victims’ families to explain what had happened and apologise. We also offered to meet families face-to-face,” the CPS spokesperson added.

“There is no indication the material was viewed by any unauthorised person. CPS South East have completely reviewed their systems and processes for the receipt and handling of video interviews to ensure that this situation cannot arise again. The original version of the data was retained by the police, and the defendant pleaded guilty in court. He was given a six-year prison sentence in March 2017.”

CPS said that it will pay the fine before 13 June – which means that it will be reduced to £260,000. 

 

About the author

Sam Trendall is editor of PublicTechnology

Share this page

Tags

Categories

CONTRIBUTIONS FROM READERS

Please login to post a comment or register for a free account.

Related Articles

The three public sector technology trends that will define 2019
27 December 2018

PublicTechnology editor Sam Trendall picks out the topics and trends that will dominate the year ahead, and revisits the predictions of a year ago to see any of them came to pass

The biggest stories of 2018 – part one
28 December 2018

We take a look back at the major developments that shaped the first half of the year

 

Innovate UK head looks back on 'a year of incredible change'
4 January 2019

Ian Campbell discusses the Industrial Strategy and the opportunities ahead for UK Research and Innovation

Related Sponsored Articles

BT Customer Experience Centres: How our infrastructure and intelligence can transform your organisation
21 January 2019

BT always talks about helping its customers be there in the moments that matter. And that’s the idea at the core of their new Customer Experience Centres. Experience BT solutions first-hand and...

One click, no clunk: meetings made simple
14 January 2019

BT shows how to move from separate audio and web conferencing services to a fully integrated video, mobile, any device from anywhere meeting experience

Implementing an SD-WAN which delivers on its promise
7 January 2019

BT's Keith Langridge leads a debate on implementing an SD-WAN which delivers on its promise, now and into the future