Cambridgeshire County Council breached the Data Protection Act by losing a memory stick containing sensitive data relating to vulnerable adults, the Information Commissioner’s Office (ICO) said today. The ICO was informed by the council in November 2010 that an employee had recently lost an unencrypted memory stick containing personal data relating to a minimum of…
Category: Lost or Missing
UK: Renewal applications lost by Passport Service
The Identity and Passport Service (IPS) breached the Data Protection Act by losing the passport renewal applications of 21 individuals, the Information Commissioner’s Office (ICO) said today. The loss occurred in May 2010 at the passport office that was responsible for processing the applications and the ICO was subsequently informed. The missing details included the…
Unencrypted FirstGroup America applicant data on lost flash drive
An unencrypted flash drive with First Transit applicants’ personal information was recently lost on a bus in Cincinnati. According to a notification sent to the New Hampshire Attorney General’s Office on February 4, the stick was lost on January 21. It contained applicants’ names, addresses, dates of birth, Social Security Numbers, information about applicants’ criminal…
Marriott Vacation Club Intl reports data loss involving paper records
On December 27, Marriott Ownership Resorts (d/b/a Marriott Vacation Club International) learned that _____ timeshare maintenance fee payment slips that had been processed by _____________ Bank were in a box that had been damaged in transit to Marriott’s corporate offices by major overnight shipping service, ________ and that some of the payment slips had been…
Vermont Attorney General Settles Security Breach Allegations Against Health Net
Attorney General William Sorrell filed a complaint and proposed settlement Friday with Health Net, Inc., and Health Net of the Northeast, Inc., regarding the health insurance company’s loss of an unencrypted portable hard drive containing protected health information. The complaint alleges violations of HIPAA (the Health Insurance Portability and Accountability Act), Vermont’s Security Breach Notice Act, and…
Heraeus breach: missing tapes may be buried in landfill
Through its lawyers, Heraeus Incorporated notified the New Hampshire Attorney General’s Office on December 29 of a security breach. According to the letter, the company noticed on November 18 that a steel cabinet that contained a safe with backup tapes was missing. The company believes (but cannot be sure) that the cabinet was discarded as…