BreachExchange mailing list archives
Council fined for randomly emailing personal data
From: security curmudgeon <jericho () attrition org>
Date: Fri, 10 Jun 2011 03:11:49 -0500 (CDT)
http://www.theregister.co.uk/2011/06/10/surrey_data_failure/ Council fined for randomly emailing personal data £120k slap for slipshod Surrey By John OatesSurrey County Council has been fined £120,000 by the Information Commissioner's Office for breaking the Data Protection Act.
The council was rapped for three separate offences. Firstly, in May last year it sent mental and physical health information on 241 individuals to the wrong group email address. Recipients included cab and coach firms.
The council tried to recall the email but was unable to verify what happened to the information. The file was not encrypted or password protected.
[..]
_______________________________________________ Dataloss Mailing List (dataloss () datalossdb org) Archived at http://seclists.org/dataloss/ Unsubscribe at http://datalossdb.org/mailing_list Learn encryption strategies that manage risk and shore up compliance. Download Article 1 of CREDANT Technologies' The Essentials Series: Endpoint Data Encryption That Actually Works http://credant.com/campaigns/realtime2/gap-LP1/
Current thread:
- Council fined for randomly emailing personal data security curmudgeon (Jun 10)