European Data Protection Digest

Breaches Persist, Is This the New Norm?

DATA LOSS—UK

April 20, 2012

The South London Healthcare Trust, Hertfordshire County Council and Leicestershire Council have all signed undertakings to better protect personal information and train staff after breaches at each organisation, and GE Healthcare is reviewing its privacy procedures after sending data on 600,000 NHS patients to servers in the U.S. The spate of breaches in the UK has one reporter wondering whether this will be the new norm and some security experts calling for an NHS "security czar." In a publicservice.co.uk op-ed voicing disapproval of the ICO's response to breaches, Information Commissioner Christopher Graham says it's important to make staff aware that they're dealing with sensitive personal information, and adds, assessing a breach is not "black and white."
Full Story