Feeds

CPS apologises for DNA disc blunder

Civil Service pass-the-parcel

The essential guide to IT transformation

The Crown Prosecution Service has apologised unreservedly for misplacing a disc of DNA profiles sent by Dutch authorities in January 2007.

The 2,159 DNA profiles from crime scenes were not checked against the UK database until February 2008. This resulted in 15 matches. Because of the delay in dealing with the disc, 11 of the 15 suspects had already gone on to commit further crimes in the UK.

The disc contained DNA profiles but no identifying information - the idea was to find matches between the two databases first, then get the legal clearance to link those to actual database entries.

A review by Peter Lewis, chief executive of the CPS, found the disc was sent unexpectedly to the CPS - it should have gone to Mutual Legal Assistance, which deals with international exchanges of police information and evidence.

Instead, it was sent by business post in an envelope addressed to CPS's Ludgate Hill office, but not to an individual or even a department.

The disc arrived 29 February 2007. On 2 March a senior manager noticed the disc and contacted Dutch authorities, who told him the right lawyer to contact within the CPS.

The review said: "By March 2007 the Dutch disk was in the hands of the lawyer who, although not expecting the disk, was aware of the background to Operation Thread [as the Anglo-Dutch co-operation was known], knew what was likely to be contained on the disk and should have understood its importance to the investigation of crime in the Netherlands.

"All that was now required was for the disk to be placed in a safe or secure cabinet and for contact to be made quickly with the police to arrange for the secure collection or transfer of the disk. This was a simple task that could and should have been undertaken immediately."

But this "simple task" was not carried out. The disc did not get delivered to the police until almost a year later - January 2008.

The report gave a brief summary of the disc's travels, or lack thereof, in that period.

The lawyer who had the disc took an unexpected and lengthy leave of absence in early April 2007. This person did not tell their manager about the disc. In late April Dutch authorities asked about the disc, but nothing was done.

In August 2007 the CPS searched for the disc and could not find it. On 14 August the Home Office cheekily asked the Dutch if they could pop another copy in the post. The report notes: "The Dutch Authorities were more concerned about the whereabouts of the original disk and the matter was not pursued."

In late October the lawyer returned from their leave of absence. The disc was found and police contacted 21 November.

The report said: "There followed an almost casual exchange of correspondence over the next two months... The disk was eventually collected by NDNADB [National DNA Database] on 11 January 2008."

No evidence was found that the disk was copied or ever left the CPS offices.

The report is circumspect about actual crimes committed as a result of this failure, because: "A number of individuals who may have felt they had successfully escaped justice in the Netherlands are now at risk of arrest and it would be very unfortunate if a fuller reporting of Operation Thread alerted them to their vulnerability and caused them to go into hiding, flee the jurisdiction or impede investigations in the Netherlands."

The report made several recommendations for improving data transfer in future, but said: "It is essential that understandable concerns caused by both the delay in executing Operation Thread, and the uncertainty of its final outcome, do not in any way diminish enthusiasm for similar exchange agreements with other partner states in the future." ®

The essential guide to IT transformation

More from The Register

next story
Britain's housing crisis: What are we going to do about it?
Rent control: Better than bombs at destroying housing
Top beak: UK privacy law may be reconsidered because of social media
Rise of Twitter etc creates 'enormous challenges'
GCHQ protesters stick it to British spooks ... by drinking urine
Activists told NOT to snap pics of staff at the concrete doughnut
What do you mean, I have to POST a PHYSICAL CHEQUE to get my gun licence?
Stop bitching about firearms fees - we need computerisation
Ex US cybersecurity czar guilty in child sex abuse website case
Health and Human Services IT security chief headed online to share vile images
We need less U.S. in our WWW – Euro digital chief Steelie Neelie
EC moves to shift status quo at Internet Governance Forum
Oz biz regulator discovers shared servers in EPIC FACEPALM
'Not aware' that one IP can hold more than one Website
prev story

Whitepapers

Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Advanced data protection for your virtualized environments
Find a natural fit for optimizing protection for the often resource-constrained data protection process found in virtual environments.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.