BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Council fined for randomly emailing personal data

From: security curmudgeon <jericho () attrition org>
Date: Fri, 10 Jun 2011 03:11:49 -0500 (CDT)

http://www.theregister.co.uk/2011/06/10/surrey_data_failure/

Council fined for randomly emailing personal data
£120k slap for slipshod Surrey
By John Oates
Surrey County Council has been fined £120,000 by the Information Commissioner's Office for breaking the Data Protection Act.
The council was rapped for three separate offences. Firstly, in May last year it sent mental and physical health information on 241 individuals to the wrong group email address. Recipients included cab and coach firms.
The council tried to recall the email but was unable to verify what happened to the information. The file was not encrypted or password protected. 

[..]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Learn encryption strategies that manage risk and shore up compliance.
Download Article 1 of CREDANT Technologies' The Essentials Series:
Endpoint Data Encryption That Actually Works
http://credant.com/campaigns/realtime2/gap-LP1/
Previous By Date Next
Previous By Thread Next

Current thread: