Watchdog claims theft is leading cause of data breaches
By Stewart Mitchell
Posted on 11 Nov 2009 at 11:42
Burglaries and theft are the biggest causes of data security breaches, according to figures released by the Information Commissioner's Office (ICO).
Of the 711 security breaches reported since the 25 million child benefit records went missing two years ago, 231 have involved theft. Under new proposals companies with inadequate security in place could face fines, ICO says.
“Since November 2007 we have taken action against 54 organisations for the most reckless breaches. Some of these breaches would trigger a significant fine for organisations were they to occur after the introduction of monetary penalties in 2010,” says David Smith, deputy information commissioner.
Organisations, especially NHS bodies, should ensure that the level of security at premises is commensurate with the type of data they are holding
“We are keen to encourage organisations to achieve better data protection compliance and we expect that the prospect of a significant fine for reckless or deliberate data breaches will focus minds at boardroom level.”
New powers scheduled to come into force in 2010 will enable the ICO to impose substantial monetary penalties on organisations where there is evidence of a reckless or deliberate data protection breach.
Regardless of how thorough infrastructure and network security, the ICO says plain physical security is too lax in many organisations – and singled out the NHS for criticism regarding protection of its hardware assets.
“We have investigated organisations, including several NHS bodies, that have failed to adequately secure their premises and hardware, which has left people’s personal details at risk,” says Mick Gorrill, the assistant information commissioner with responsibility for investigations.
“Organisations, especially NHS bodies, should ensure that the level of security at premises is commensurate with the type of data they are holding. Many breaches are avoidable and are often the result of poor management processes.”
From around the web
advertisement
- Laptop bag reviews: nine tested
- Sony VAIO T Series Ultrabook review: first look
- Revealed: the military standards and robots HP uses to test its laptops
- Windows 8: multi-monitors and double standards?
- Why is TalkTalk's year-old porn filter suddenly big news?
- Why are laptop screens so far behind mobiles?
- HP EliteBook Folio review: first look
- The shoebox-sized all-in-one printer
- Forget the Ultrabook: here comes the HP Sleekbook
- HP Spectre XT review: first look
- Why you have to be left in the dark on OS patches
- Publishing your email address isn't a security disaster
- Why antivirus is fighting a losing battle in your office
- Four year olds used to steal their parents' data
- An acceptable use policy for your kids
- Paying for your crimes with Bitcoin
- Pavement hacking: What it is and how to avoid it
- Google's risky pre-loaded pages
- Mac under attack: how secure is Apple's OS?
- Has your browser been hijacked?
advertisement
