Two local authorities have been fined by the Information Commissioner’s Office for data protection breaches after laptops containing unencrypted information went missing.
Ealing Council and Hounslow Council were fined £80,000 and £70,000, respectively. Ealing’s breach arose because two laptops were stolen from the home of an employee. Hounslow’s breach arose because it did not have a written contract with Ealing Council.
Tom Morrison, IP partner at Rollits LLP, says: “It has been made crystal clear that every organisation that uses laptop computers must make sure that they are encrypted and not just password protected.
“If you outsource a function—such as the processing of payroll or in this case the operation of an out of hours service—to a contractor then it is you rather than the contractor who retains primary liability for compliance with the Act.”
.tmb-mov69x69.jpg?sfvrsn=16d9dd3d_1)
