On Monday the Information Commissioner fined Torbay Care Trust a huge £175,000 after sensitive details of over 1,000 employees were published on the Trust’s website. The information was published on April 2011 and the Trust only became aware when a member of the public notified them 19 weeks later.
The data published covered the quality and diversity responses of 1,373 staff and included names, dates of birth, national insurance numbers and sensitive information about individuals religion and sexuality.
The Information Commissioner’s Office (ICO) commented that the Trust has no guidance for what information should be published online. Stephen Eckersley, Head of Enforcement, said:
The fact that this breach was caused by Torbay Care Trust publishing sensitive information about their staff is extremely troubling and was entirely avoidable. Not only were they giving sensitive information out about their employees but they were also leaving them exposed to the threat of identity fraud.
Does your organisation possess data protection measures and guidance?
The DPA Compliance Toolkit is a cost-effective way of ensuring you comply with the Data Protection Act, store data securely and provide guidance to employees on data do’s and don’ts.
|Complete Data Protection Toolkit
The DPA Compliance Toolkit contains all the tools, resources and guidance you need to put the documentation in place for do-it-yourself DPA compliance.
Gain a more thorough understanding of the DPA by attending our classroom course. You should also consider training your whole team, or key members of staff by bringing in an expert DPA trainer for a day’s in-house training. We have a special August offer which enables you to book this from just £1000!
Alternatively, we have a team of expert consultants for you to deploy should this be the most suitable route for your organisation to take – call 0845 070 1750 for more information and a tailored quote today.