NHS security breach in Scotland revealed
NHS Education for Scotland has agreed to sharpen up its data security practices after having an unencrypted laptop stolen. It has made the undertaking after having informed the Information Commissioner's Office of the theft.
The laptop contained personal information on 6,377 applicants for medical training positions. It included names, addresses, phone numbers and summaries of the applicants, as well as monitoring information relating to equality and diversity.
Malcolm Wright, chief executive of NHS Education for Scotland, has signed an undertaking confirming that the organisation will take a number of steps to ensure personal information is kept safe and secure in the future. They include the use of encryption software on portable devices and making staff aware of policy on data storage.
Ken Macdonald, assistant information commissioner for Scotland, said: "Password-protected laptops are not secure. I urge all organisations to restrict and encrypt the amount of personal information stored on portable devices that can be taken off site."
Reproduced from an article published by ZDNet.co.uk
© ZDNet.co.uk
The original article can be viewed here:
http://news.zdnet.co.uk/security/0,1000000189,39746741,00.htm
Permalink Bookmark Digg this story
