Data Protection Act breached by Cambridgeshire Council

-


Cambridgeshire County Council breached the Data Protection Act as a memory stick was lost which contained sensitive data relating to vulnerable adults.

The ICO was informed by the Council in November 2010 that an employe had lost an unauthorised and unencrypted memory stick, which they had used to store notes and minutes of meetings relating to the support of at least six individuals. The employee did have an official council encrypted device, but failed to use it after encountering problems.

The incident occurred shortly after the council had undertaken an internal campaign aimed at promoting its encryption policy. During this time employees had been asked to hand in unencrypted devices and were warned about the importance of keeping personal information secure.

Sally Anne-Poole, Enforcement Group Manager at the ICO, said:
“While Cambridgeshire County Council clearly recognise the importance of encrypting devices in order to keep personal data secure, this case shows that organisations need to check their data protection policies are continually followed and fully understood by staff.

HRreview Logo

Get our essential weekday HR news and updates.

This field is for validation purposes and should be left unchanged.
Keep up with the latest in HR...
This field is hidden when viewing the form
This field is hidden when viewing the form
Optin_date
This field is hidden when viewing the form

 

“We are pleased that Cambridgeshire County Council has taken action to improve its existing security measures and has agreed to carry out regular and routine monitoring of its encryption policy to ensure it is being followed.”

A Cambridgeshire County Council spokesman said the member of staff who lost the device had been disciplined and had also been given advice on their professional conduct following a full investigation.

He said: “Cambridgeshire County Council takes the storage of personal data very seriously and has strict procedures on how it should be stored. We apologise that this loss happened and contacted the relevant people as soon as we were made aware. In this case the member of staff did not follow the council’s policy of using a password protected and encrypted memory stick.”

Latest news

England’s overnight World Cup clash and 5am pub opening prompt CIPD advice

The CIPD is urging organisations to agree any flexibility before England's 1am World Cup last-16 tie to help minimise disruption at the start of the working week.

Russell Cowley: Gen Z – rebuilding workplace culture, break by break

Gen Z workers are taking proper breaks and in doing so, they may be fixing something the rest of us broke.

Fit for Work: Weekend warrior? You can still reap the health benefits

Weekend exercise can still improve long-term health, even for people who struggle to fit physical activity into the working week.

Superdry co-founder’s victim warns workplace power can silence abuse victims

A survivor's account raises questions about speaking-up cultures and accountability in organisations.
- Advertisement -

UK’s always-on work culture ‘driving employee burnout’

Nearly half of UK workers say they end most working days mentally exhausted as rising workplace pressure leaves employees and managers struggling to switch off.

Andrew Murray on why no two days look alike

A people development leader shares how travel, training and a passion for helping others shape a working day with little room for routine.

Must read

Marion Beauregard: How to become more resilient to stress, stay calm and focused

Stress is the normal physiological response of our body...

Feature Article: The budget 2011 – where does HR fit in?

2010 was the year of the emergency budget. This...
- Advertisement -

You might also likeRELATED
Recommended to you