Feeds

Careless care charity loses unencrypted patient data stick

Whoops, won't happen again

Top 5 reasons to deploy VMware with Tegile

A care provider with offices in the Isle of Man and Northern Ireland has committed to improving its data protection standards after losing a memory stick containing unencrypted patient data.

The charity, Praxis Care, lost the memory stick in August 2011.

The device held personal information relating to 107 Isle of Man residents and 53 individuals from Northern Ireland, which in some cases related to their mental health and care. It has not been recovered, according to the Information Commissioner's Office (ICO).

The organisation has now undertaken to make sure that all portable devices that hold personal data are encrypted and any personal information that it no longer needs will be disposed of securely in line with its updated data security guidance, the ICO said.

Praxis Care - which looks after adults and children with learning disabilities, mental ill health and similar difficulties - said that it would improve its data protection after a joint ruling by the ICO and the Office of the Data Protection Supervisor for the Isle of Man.

Christopher Graham, the information commissioner, said: "Carrying people's personal information around on an unencrypted memory stick is clearly unacceptable. The fact that some of the personal details stored on the device were out of date and so surplus to requirements makes this breach all the more concerning.

"The ICO will continue to work closely with other data protection regulators where it is clear that a data breach extends across national boundaries."

This article was originally published at Guardian Government Computing.

Guardian Government Computing is a business division of Guardian Professional, and covers the latest news and analysis of public sector technology. For updates on public sector IT, join the Government Computing Network here.

Beginner's guide to SSL certificates

Whitepapers

Designing and building an open ITOA architecture
Learn about a new IT data taxonomy defined by the four data sources of IT visibility: wire, machine, agent, and synthetic data sets.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.