The Information Commissioner’s Office (ICO) has found Salford Royal NHS Foundation Trust in breach of the Data Protection Act after the Trust reported a desktop computer containing sensitive personal information relating to around 3,500 patients was stolen. Although the computer was password protected, it was not encrypted or secured to a desk. A formal undertaking has been signed by Salford Royal NHS Foundation Trust. The Trust will ensure appropriate security measures are in place to restrict access to areas where personal information is stored and desktop computers will be secured to desks to prevent easy removal. The Trust will also ensure that any personal data required to be held on a portable device is suitably encrypted and that personal details are not retained on any computer for longer than is required.
Security
Salford Royal NHS Foundation Trust breaches the Data Protection Act
- Details
- Category: Data Theft, Data Losses and Espionage
- Hits: 2768