DPA problems not confined to the public sector
May 6th, 2010 by James WarrenIn a speech at the Infosec security conference last week, the deputy Information Commissioner, David Smith, said that the NHS reported the highest number of serious data breaches of any UK organisation since the end of 2007.
The NHS – the UK’s largest employer with 1.7m staff reported 287 breaches it in the period, accounting for more than 30% of the total number of reported breaches. Most of the breaches (113) were the result of stolen data or hardware, followed by 82 cases of lost data or hardware.
Skewed Results
Mr Smith said the problems were not confined to the public sector and that results could be skewed because the public sector has a culture of reporting all breaches whereas not all private sector firms did.
Currently the reporting procedure for data breaches in the UK is voluntary although the ICO is “moving towards” a compulsory system. In April the ICO introduced fines of up to £500,000 for serious data breaches.
Find out more about the new powers of the ICO >>
To help organisations of all sizes, and within any vertical sector, to comply with the data protection act, we have developed new products and services. Our mos
t popular product for organisations who want to take the DPA seriouly and want to raise awareness in their organisation, is the Complete Data Protection Toolkit and DPA Awareness Posters.
We are also about to launch the new DPA Compliance with BS10012 – Documentation Toolkit.
 |
If you want to take a broader look at information security you should buy Assessing Information Security: Strategies, Tactics, Logic and Framework and let the master strategists show you how to fight the information war! |
Tags: Data Protection Act, DPA, ITGP
Follow us on Twitter
Join us on Facebook
RSS Feed
