DPC: Insurers Committed "Unprecedented" Number of Breaches
PRIVACY LAW—IRELANDApril 27, 2011
An Office of the Data Protection Commissioner (ODPC) investigation has found that staff at insurance companies inappropriately accessed data to examine claims histories, The Irish Times reports, including accessing an industry-wide database prior to making quotes. The commissioner has ordered insurers to remove data from Insurance Link, which stores and shares details on 2.4 million cases, breaching the Data Protection Act. It's illegal to store such data without a valid basis, the commissioner's office said, adding most of the public is unaware of the database, and there is no evidence data-subject consent was acquired. The ODPC will publish the investigation's findings in a report later this year.