The Information Commissioner’s Office (ICO) has announced that a monetary penalty notice has been served on Aberdeen City Council after inadequate homeworking arrangements led to 39 pages of personal data being uploaded onto the internet by a Council employee. The council has been fined £100,000. The incident occurred in November 2011, after a home working employee…
Category: Non-U.S.
Deutsche Telekom admits staff data security breach
Telecompaper had a small item about a breach involving Deutsche Telekom. Astrid Maier of Manager Magazin had the story upon which it was based. Based solely on my understanding of a Google translation of the latter, it appears that nearly 25 employees who shouldn’t have had access to identifiable information were able to access the…
UK: Uni in Data Protection Breach
Jo Barrows reports on an e-mail gaffe involving University of York: The Department of Admissions have been left red-faced after circulating an email containing private details of a postgraduate application to every student on the applicant’s course. The email included a forwarded message from the applicant who was appealing against her rejection from a Masters…
IE: Data breach involving payments to current and former IBRC staff
A personal data breach at the former Anglo Irish Bank has seen letters and payments sent to the wrong people with dozens of current and former employees at the liquidated bank affected. The special liquidators at the Irish Bank Resolution Corporation (IBRC), KPMG, have confirmed a personal data breach involving cheques that were “misdirected” to…
Lutz Otte, German IT specialist employed by Julius Baer, sentenced to 3 years for Swiss data theft
Oliver Hirt reports on sentencing in a 2011 breach reported previously on this blog: A Swiss court on Thursday sentenced a 54-year-old computer specialist to three years in jail for selling client data from Swiss bank Julius Baer to the German tax authorities, after the man agreed a plea deal with prosecutors. […] Otte sent…
UK: Local Government Ombudsman (the LGO) signs undertaking after data breach
An undertaking to comply with the seventh data protection principle has been signed by the Local Government Ombudsman. This follows the theft of a bag containing hard copy papers relating to complaints made to the Local Government Ombudsman (the LGO) including some sensitive personal information. The bag, which was stolen from an investigator at a…