A laptop containing personal data, including details of 1900 driving convictions, was stolen from a locked car in a car park. Repair Management Services, a trade association, have now made a written undertaking to encrypt all laptops and machines storing personal data by March 2010. Security measures, which included password protection, were deemed insufficient by the ICO to prevent unauthorised access and potential distress to individuals. This is yet another reminder to institutions to ensure that appropriate technical and organisational measures are in place to make personal data secure, including use of encrypted devices, adequate training of staff and effective data protection policies. For the full story, go to: http://www.out-law.com/page-10309.
(20/08/09)