What
Loss of personal data.
How much
607 records.
Why
An unencrypted laptop containing personal data relating to staff and patients was stolen from an employee’s hotel room.
Regulator
ICO
Regulatory action
Undertaking issued to ensure that all mobile data storage devices are sufficiently encrypted. All staff must be made aware of the data controller’s policy for the storage of personal data and be trained to follow it. Compliance with these policies must be monitored.
Reason for action
The laptop was unencrypted and stolen from the employee while he was attending a conference.
When
26 June 2009
Links
View PDF of the Hampshire Partnership NHS Trust Undertaking (Breach Watch Archive)