St Albans council rapped for data leak in laptop theft
THE theft of a laptop containing postal voters records has resulted in St Albans council being found in breach of the Data Protection Act. The personal information was password-protected but unencrypted and disappeared some time before November 5 when th
THE theft of a laptop containing postal voters' records has resulted in St Albans council being found in breach of the Data Protection Act.
The personal information was password-protected but unencrypted and disappeared some time before November 5 when the council discovered the laptop containing the information and three others had gone missing.
Details of nearly 14,500 local residents were listed on the laptop.
Daniel Goodwin, chief executive for St Albans council, has now signed an undertaking to ensure that staff and contractors are fully aware of security procedures and adequate checks will be carried out on contractors' staff.
You may also want to watch:
The council has already encrypted laptops and other portable devices used to store and transmit personal data and appropriate physical security measures have been put in place to prevent unauthorised access to it.
Mr Goodwin said this week: "We apologise again to all those people whose details were contained on the missing laptop.
- 1 St Albans nursery given six weeks' notice warning of potential closure
- 2 Do you remember when The Inbetweeners came to St Albans?
- 3 Urgent care services at St Albans hospital could become appointment only
- 4 In Pictures: Harpenden Farmers' Market back on the Common
- 5 St Albans violent crime: Teen drugs gang behind spate of attacks on rivals found guilty
- 6 Standon Calling called off after heavy rain and lightning risk
- 7 St Albans violent crime: 'Intervention needed to break the cycle of grooming'
- 8 Property Spotlight: A spacious family home in Harpenden's prestigious West Common
- 9 Man given Criminal Behaviour Order for being drunk in St Albans
- 10 Harpenden arrest in connection with St Albans council fraud probe
"At the time of the disappearance of the laptops, the council, as a precautionary measure, arranged for CIFAS, the UK's fraud prevention service, to provide protection to those residents whose data was on the missing laptop.
"We have also conducted a root and branch review of our IT services and made improvements to our data security, some of which are set out in the undertaking. "While we had policies in place on data security these were not followed. They are being followed now and all staff have been reminded how important this is. The action that we have taken will help prevent anything happening like this again."
Sally-Anne Poole, head of enforcement and investigations at the Information Commissioners Office (ICO) said: "When organisations store large volumes of personal details on portable computers, encryption is essential. They must ensure staff and contractors are trained to handle personal information securely to avoid the risk of information falling into the wrong hands."
But she said the ICO was pleased that the council had taken comprehensive remedial action informing residents affected by the breach.