Over 3,000 patient records were found on a second-hand NHS computer that was auctioned on eBay. NHS Surrey failed to check that the data destruction company had properly disposed of the records. In a data breach quoted as one of the most serious they’ve ever seen, NHS Surrey has been fined £200,000 by the Information […]
Personal Information
£150,000 Fine for Lost Devices with Private Personal Data
The Information Commissioner’s Office has urged organisations to review their policies on how personal data is handled, after the Nursing and Midwifery Council was issued a £150,000 civil monetary penalty for breaching the Data Protection Act. The council lost three DVDs related to a nurse’s misconduct hearing, which contained confidential personal information and evidence from […]
ICO ‘bares its teeth’ as organisations learn the hard way
Organisations are learning the hard way what the consequences of handling personal information are, the Information Commissioner warned at the launch of the ICO’s 2011/12 Annual Report on 5 July. The Commissioner’s comments came as the ICO imposed a civil monetary penalty (CMP) of £150,000 on the consumer lender Welcome Financial Services Limited (WFSL), after […]
