Over 3,000 patient records were found on a second-hand NHS computer that was auctioned on eBay. NHS Surrey failed to check that the data destruction company had properly disposed of the records. In a data breach quoted as one of the most serious they’ve ever seen, NHS Surrey has been fined £200,000 by the Information […]
civil monetary penalty
ICO ‘bares its teeth’ as organisations learn the hard way
Organisations are learning the hard way what the consequences of handling personal information are, the Information Commissioner warned at the launch of the ICO’s 2011/12 Annual Report on 5 July. The Commissioner’s comments came as the ICO imposed a civil monetary penalty (CMP) of £150,000 on the consumer lender Welcome Financial Services Limited (WFSL), after […]
NHS Trust fined £325,000 due to data breach affecting thousands
Brighton and Sussex University Hospitals NHS Trust has been served with a Civil Monetary Penalty (CMP) of £325,000 following a serious breach of the Data Protection Act (DPA), the Information Commissioner’s Office (ICO) said today. It comes after the discovery of highly sensitive personal data belonging to tens of thousands of patients and staff – […]