Thursday, November 22, 2007

Ministers 'ignored data security warnings'

Please read the whole of this article in the Telegraph. It is just goes from bad to worse. The article currently has 3 pages. How many more will it need?

Some points from the article

  • HMRC has had 2,111 data protection breaches in the past year, according to the Tories. Customs refused to disclose details of what these were
  • A government review of security in 2003 identified “serious risks” of information going astray and recommended data should be encrypted.
  • The chairman of HMRC who resigned over the fiasco is still on full salary and will receive a full pension package.
  • Mr Darling has repeatedly pinned the blame for the missing CDs on a “junior official” at the HMRC who put them in the post. Yet the staff member was following procedures laid down in March by senior HMRC managers when a similar request for data was made by the National Audit Office.
  • Mr Darling also told parliament that he delayed announcing the loss of the CDs for 10 days after being told about it on November 10 because banks wanted more time to prepare anti-fraud measures.
  • The British Banking Association said: “The BBA did not ask for more time and none of our members asked for more time.”
  • The Association of Payment Clearing Services, which manages the movement of money between banks, said: “We found out on Friday and were given until Monday to sort it out. There was no request for a delay.”
  • An almost identical breach of security involving CDs happened in September 2005, when the names, addresses, dates of birth and bank details of UBS customers were lost in the post after being posted by HMRC.
  • Richard Thomas, the information commissioner, said he had repeatedly warned the Government that its data protection procedures were not up to scratch. He said: “I have been pressing the Government to give my office the power to audit and inspect organisations that process people’s personal information without first having to get their consent.”
  • In July this year Mr Thomas warned that data protection breaches in Government departments were "frankly horrifying”. Turning to the latest breach, he said: “It is a shocking case. I am at a loss to find out what happened in this situation. This goes beyond legal compliance. Any aggregated system for collecting information must be proof against criminals, it must be proof against idiots, it must be proof against those who don’t follow the ordinary rules of procedure.”
What more can I add.

Ministers 'ignored data security warnings' - Telegraph

Posted by Fitaloon at 12:01 am

Labels: , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)