Loss of personal and sensitive personal data.
Theft of an unencrypted laptop from a locked ground floor office in the Newcastle area.
Undertaking issued to ensure that portable and mobile devices including laptops are encrypted to a sufficient standard. Physical security standards must be adequate to prevent unauthorised access to personal data.
Reason for action
The stolen laptop was password protected, but had not been encrypted, However the data controller proposed to improve physical software and implement encryption as a result of the incident.
01 March 2012.
View PDF of the Community Integrated Care Undertaking (Via ICO Website)
View PDF of the Community Integrated Care Undertaking (Breach Watch Archive)