Feeds

CPS apologises for DNA disc blunder

Civil Service pass-the-parcel

Combat fraud and increase customer satisfaction

The Crown Prosecution Service has apologised unreservedly for misplacing a disc of DNA profiles sent by Dutch authorities in January 2007.

The 2,159 DNA profiles from crime scenes were not checked against the UK database until February 2008. This resulted in 15 matches. Because of the delay in dealing with the disc, 11 of the 15 suspects had already gone on to commit further crimes in the UK.

The disc contained DNA profiles but no identifying information - the idea was to find matches between the two databases first, then get the legal clearance to link those to actual database entries.

A review by Peter Lewis, chief executive of the CPS, found the disc was sent unexpectedly to the CPS - it should have gone to Mutual Legal Assistance, which deals with international exchanges of police information and evidence.

Instead, it was sent by business post in an envelope addressed to CPS's Ludgate Hill office, but not to an individual or even a department.

The disc arrived 29 February 2007. On 2 March a senior manager noticed the disc and contacted Dutch authorities, who told him the right lawyer to contact within the CPS.

The review said: "By March 2007 the Dutch disk was in the hands of the lawyer who, although not expecting the disk, was aware of the background to Operation Thread [as the Anglo-Dutch co-operation was known], knew what was likely to be contained on the disk and should have understood its importance to the investigation of crime in the Netherlands.

"All that was now required was for the disk to be placed in a safe or secure cabinet and for contact to be made quickly with the police to arrange for the secure collection or transfer of the disk. This was a simple task that could and should have been undertaken immediately."

But this "simple task" was not carried out. The disc did not get delivered to the police until almost a year later - January 2008.

The report gave a brief summary of the disc's travels, or lack thereof, in that period.

The lawyer who had the disc took an unexpected and lengthy leave of absence in early April 2007. This person did not tell their manager about the disc. In late April Dutch authorities asked about the disc, but nothing was done.

In August 2007 the CPS searched for the disc and could not find it. On 14 August the Home Office cheekily asked the Dutch if they could pop another copy in the post. The report notes: "The Dutch Authorities were more concerned about the whereabouts of the original disk and the matter was not pursued."

In late October the lawyer returned from their leave of absence. The disc was found and police contacted 21 November.

The report said: "There followed an almost casual exchange of correspondence over the next two months... The disk was eventually collected by NDNADB [National DNA Database] on 11 January 2008."

No evidence was found that the disk was copied or ever left the CPS offices.

The report is circumspect about actual crimes committed as a result of this failure, because: "A number of individuals who may have felt they had successfully escaped justice in the Netherlands are now at risk of arrest and it would be very unfortunate if a fuller reporting of Operation Thread alerted them to their vulnerability and caused them to go into hiding, flee the jurisdiction or impede investigations in the Netherlands."

The report made several recommendations for improving data transfer in future, but said: "It is essential that understandable concerns caused by both the delay in executing Operation Thread, and the uncertainty of its final outcome, do not in any way diminish enthusiasm for similar exchange agreements with other partner states in the future." ®

SANS - Survey on application security programs

More from The Register

next story
EU: Let's cost financial traders $400m a day, because EVIL BANKERS. Right?
Wait 'til this one hits your pension fund where it hurts
Systems meltdown plunges US immigration courts into pen-and-paper stone age
Massive outage could last four weeks, sources claim
Lavabit loses contempt of court appeal over protecting Snowden, customers
Judges rule complaints about government power are too little, too late
UK.gov chucks £28m at F1 tech for buses and diggers plan
Well, not really F1 but who's heard of LMP and VLN*?
Don't let no-hire pact suit witnesses call Steve Jobs a bullyboy, plead Apple and Google
'Irrelevant' character evidence should be excluded – lawyers
Record labels sue Pandora over vintage song royalties
Companies want payout on recordings made before 1972
Edward Snowden on his Putin TV appearance: 'Why all the criticism?'
Denies Q&A cameo was meant to slam US, big-up Russia
Ex-Tony Blair adviser is new top boss at UK spy-hive GCHQ
Robert Hannigan to replace Sir Iain Lobban in the autumn
Judge halts spread of zombie Nortel patents to Texas in Google trial
Epic Rockstar patent war to be waged in California
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.