Police responsible for first UK data loss subject to new fines

Last Friday was not a good day for the Gwent Police in the UK.  The personal information of 10,000 people was accidentally emailed by the Gwent Police to a journalist at The Register, resulting in the first major UK data loss since new fines were introduced by the UK Information Commissioner.

It was bad enough that a Microsoft Excel spreadsheet containing birth dates and criminal record checks was sent unencrypted and without password protection.  To accidentally include in the CC: field, the email address of a journalist at The Register turned this into a high profile data breach.  The Register email address was in the system because it had been used earlier for two unrelated Freedom of Information requests.

IT staff were immediately called in to tighten security measures to avoid similar incidents occurring in the future.  As a minimum that should include a secure file transfer system, content monitoring and filtering and data encryption.

While The Register has cooperated with Gwent Police in deleting the file they did not feel compelled to comply with requests not to mention this story.

About Paula Skokowski

Paula Skokowski has written 66 post in this blog.

Paula is the Chief Marketing Officer at Accellion.

No related posts.

This entry was posted on Wednesday, April 21st, 2010 at 10:23 pm and is filed under Accellion, Data Breach, Data Security, Email Attachments, UK. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply