DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

UK: Welsh police force fined £160,000 for loss of DVDs with sex abuse victim interview

Posted on May 18, 2015 by Dissent

The ICO has hit South Wales Police with a £160,000 fine for losing a video recording which formed part of the evidence in a sexual abuse case.

Three DVDs (one master and two copies) contained video of an August 2011 interview with a victim who had been sexually abused as a child. The victim’s face showed in the video and two perpetrators were named.  The content was described as both graphic and disturbing.

The DVDs, which were not encrypted, were stored in the investigating officer’s desk – a desk shared with another colleague. In October 2011, the officer realized the DVDs were missing after an office move, but because no procedures were in place, the matter wouldn’t be reported up the chain until August 2013. Despite guidances issued by the Association of Chiefs Police Officers in 2007 and the Ministry of Justice in March, 2011, there were no policies or procedures in place for storing and managing digital recordings.

The loss occurred before the case against the perpetrators went to trial. In the absence of the digital recordings, the Crown Prosecution had to ask the officer to re-interview the victim due to the unclear nature of some written notes the officer had made. The second interview was abandoned due to the victim’s distress. The victim, a vulnerable young adult, did file a complaint over the loss of the DVDs.

The DVDs have still not been recovered.

The defendants were eventually convicted in court, but this is obviously the type of serious and sensitive material that required better data protection. The prosecution could have been seriously hampered, the victim may have had to testify in court to what could have been covered on the DVD, and the victim was left at risk if the perpetrators ever get hold of the DVD and seek revenge if they are released from prison or acquitted on appeal. Just knowing that unencrypted DVDs with such sensitive information could be found by someone and viewed is likely a stressor for the victim that could have been avoided.

In addition to the monetary penalty, the Information Commissioner has asked the police force sign an undertaking to ensure the changes are made to implement policies to stop any incidents happening again. As of May 2015, there was still no policy for storage and management of digitally recorded interviews in place.

The South Wales Police told the BBC that they are considering appealing the fine.


Related:

  • PowerSchool commits to strengthened breach measures following engagement with the Privacy Commissioner of Canada
  • Hungarian police arrest suspect in cyberattacks on independent media
  • British institutions to be banned from paying ransoms to Russian hackers
  • Data breach feared after cyberattack on AMEOS hospitals in Germany
  • Inquiry launched after identities of SAS soldiers leaked in fresh data breach
  • Bitcoin holds steady as hackers drain over $40 million from CoinCDX, India's top exchange
Category: Government SectorLost or MissingNon-U.S.

Post navigation

← AU: Dishonest police officers caught snooping or sharing Victorians’ private information
Where Does Sony Settlement Leave CGL Insurance for Data Breaches? →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
  • Hacker group “Silent Crow” claims responsibility for cyberattack on Russia’s Aeroflot
  • AIIMS ORBO Portal Vulnerability Exposing Sensitive Organ Donor Data Discovered by Researcher
  • Two Data Breaches in Three Years: McKenzie Health
  • Scattered Spider is running a VMware ESXi hacking spree
  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack (1)
  • Infinite Services notifying employees and patients of limited ransomware attack
  • The safe place for women to talk wasn’t so safe: hackers leak 13,000 user photos and IDs from the Tea app

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Congress tries to outlaw AI that jacks up prices based on what it knows about you
  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders
  • Indonesia asked to reassess data privacy terms in new U.S. trade deal
  • Meta Denies Tracking Menstrual Data in Flo Health Privacy Trial
  • Wikipedia seeks to shield contributors from UK law targeting online anonymity
  • British government reportedlu set to back down on secret iCloud backdoor after US pressure

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.