Skip to main content

NHS Trust fined £200,000 following data disposal errors

NHS & Healthcare Security - Sensitive data needs proper protection.

Although it has a well structured, well run and reasonably well resourced security management service, the NHS still seems to struggle with some aspects of compliance with the Data Protection Act. As a result, another NHS trust has fallen foul of the Information Commissioner’s Office (ICO) and fined a significant amount of money. Based on […]

Fax machines – not suitable for sensitive data

Fax Machines - out of date and insecure

It seems some technologies are hard to get rid of and it seems that people are still using fax machines to send data despite them being slow, cumbersome, unreliable and, most importantly, insecure. As it is 2013, it should go without saying that fax machines are not an appropriate mechanism to send anything sensitive and […]

Mandatory Reporting of Data Security Breaches

It has been announced that the European Commission, together with the High Representative of the Union for Foreign Affairs and Security Policy, is looking to bring in mandatory reporting of information security breaches, at least within some industry sectors. In an interesting press release titled “EU Cybersecurity plan to protect open internet and online freedom […]

NHS Security Breaches Continue

NHS Security Breaches Continue

Given the level of fines (“Civil Monetary Penalties”) the Information Commissioner’s Office levied against the NHS in June, you would be forgiven in thinking that the Health Service would have exerted considerable effort to preventing any further fines. However, this doesnt seem to be the case. Since we last discussed this, the NHS has been […]

Data Security – Fines for breaches increasing

ICO Fines Increasing for data breaches

This month has seen a major increase in the fines levied by the Information Commissioner for breaches of the Data Protection Act. Over the last 30 days, there have been over £500,000 fined in three different breaches of the act, with £415,000 of the fines being in the last 11 days. At the moment, it seems to […]

ICO issues first fine to NHS following data breach

ICO issues first fine to NHS following data breach

Today the Information Commissioner’s Office announced that a Welsh health board had become the first NHS organisation to be issued with a monetary fine for a breach of the Data Protection Act. From the ICO’s press release: The Aneurin Bevan Health Board (ABHB) has been issued with a penalty of £70,000 after a sensitive report […]