Devon loses confidential children's data
CHILDREN’S names, addresses and pictures, as well as confidential data about schools and teachers, have been lost by Devon council workers, disturbing new figures reveal.
The sensitive information was on computers stolen when being used by county council staff — in many cases when they were working at home.
-
District councils have lost no confidential data in the last three years, but Devon County Council has reported 15 instances of computer theft over the same period.
In some cases the computers were known to contain confidential information on schoolchildren and council employees.
Business Cards From Only £10.95 Delivered www.myprint-247.co.uk
View detailsOur heavyweight cards have FREE UV silk coating, FREE next day delivery & VAT included. Choose from 1000's of pre-designed templates or upload your own artwork. Orders dispatched within 24hrs.
Terms: Visit our site for more products: Business Cards, Compliment Slips, Letterheads, Leaflets, Postcards, Posters & much more. All items are free next day delivery. www.myprint-247.co.uk
Contact: 01858 468192
Valid until: Friday, May 31 2013
Data lost in the thefts includes:
Information on schoolchildren, including names and photographs.
Confidential data about schools and teachers.
Personal information about employees at County Hall.
Two cleaners were caught in the act of attempting to take equipment and another was dismissed following two of the thefts.
But data lost in the majority of the thefts has never been recovered.
And the council is not certain about what was contained on many of the computers.
Despite the recent publicity surrounding the loss of sensitive personal information by government departments and agencies, personal information has continued to be placed on laptops which were taken out of County Hall and subsequently stolen.
The last recorded theft took place as recently as August this year. A laptop was stolen from a car belonging to a policy manager in the council’s adult and community services department.
It is thought to have contained personal information on employees, including appraisal records.
Any organisation which has regular and serious breaches of security when handling data could find itself taken to court and fined by the Information Commissioner. There is no indication this will happen to Devon County Council.
Devon is the only local authority in the area to have reported any data or computer equipment with personal information.
The information has been revealed after a Freedom of Information request by The Herald's sister Paper the Exeter Express and Echo.
Groups representing taxpayers have criticised the “shocking” lack of care shown by council workers towards their computers.
The 15 thefts involve laptops, mobile phones, PCs and a Blackberry belonging to county council staff.
A computer with children’s names and pictures was taken from a car; a laptop with address and personal information about young volunteers aged 16 to 18 belonging to an employee of Active Devon, a sports organisation linked to the council, was taken from their home.
Another laptop taken from a car contained appraisal records of council staff and confidential documents about schools causing concern, written by a worker on the school improvement team, were on a laptop stolen from a home.
Laptops have also been stolen from two schools.
Police have investigated most of the thefts, which have happened between March 2006 and August 2008.
Mark Wallace, campaign director for the Taxpayers’ Alliance, said: “It’s shocking the council is losing so much private and confidential data on such a regular basis.
“How on earth are they going to stand any chance of protecting all the information they will have access to when the new proposed identity card database begins?
“This shows a clear cavalier attitude towards sensitive data as well as taxpayers’ property.”
A spokeswoman from the Information Commissioners Office said guidance was always available for organisations needing help in keeping data safe.
“It’s very important to protect any personal information being held,” she said.
“If any local council feels the information has been put at risk we would advise them to report this to the commissioner. We take breaches of security very seriously.”
A spokeswoman from the Local Government Association said the organisation would not comment on individual councils and did not produce guidance on keeping data safe.
A spokesman for Devon County Council said: “In these cases, the devices were stolen from officers, not casually lost.
“We have very clear staff guidance that potentially sensitive information should not be stored on portable devices such as laptops, even though laptops are password protected to make it much more difficult for unauthorised people to access information.
“The council is already rolling out a programme to install encryption software on all laptops and other portable devices across the whole organisation, and this will make it impossible for unauthorised people to access the data.
“We have also launched a major programme to achieve compliance with the British Standards Institute International Standard on Information Security.
“Devon County Council is one of only a small number of local authorities to take this step, demonstrating how seriously we view the security of our information.
“We are reminding schools of their responsibilities concerning management and storage of potentially sensitive information.”
Related news:
MPs and servicemen demand answers on lost data
Armed forces in new lost data scare
Family data loss 'was avoidable'
Comments
by Mike, saltash
Thursday, October 23 2008, 10:27PM
“Another incident of the civil service, Council workers lack of common sense, or is it organised in an attempt to bring down the Government, If this happened in the private sector heads would roll, its time to make an example of this type of incompetence, send them to jail and put a stop to it.”
by pete, plympton
Thursday, October 23 2008, 10:23AM
“Something is seriuosly wrong with so much stuff like this going on on a regular basis. Its beginning to look to much like organised crime getting details about everyone in the country . And as for ID cards ... I will go to prison rather than have one ... I was born in a free world here and because of the mess tat the ones in charge have made they want me to pay for that rubbish ? We all told them what would happen if they let to many foriegners in and was told we were biggots or labeled racists ... well ... now get stuffed . what a mess they got us into .”
by Keith, Eggbuckland
Thursday, October 23 2008, 6:53AM
“Yet another case of lost data, on the plus side if it¿s Council workers involved, they will not be named, their jobs will be safe, because the unions will be on their case and he or she will be promoted to head of data loss and security as they now have experience.
Where the cleaners involved contract cleaners by any chance?
I hope all of this data was encrypted and not just by a network login or a password on the office suite applications or PC.
Encryption software is cheap and easy to use, alternatively and the best option is give all users remote access only via mobile, landline etc and all data to be held centrally only, whats looked at is restricted and can be made read only, no down loads unless on Council premises etc. That why if a PC is stolen or lost, its just the cost of the laptop, please oh please councils start employing people with common sense to run your IT Depts.
And you all really think we need ID cards to combat terrorism, another stealth tax, every working adult paying a £100 for the privilege every 10 years, for what, remember all of the bombers in both the USA and UK had valid passports so that¿s not a valid excuse. If its to stop illegal immigrants, sorry these guys do not pass through our regular channels and the government should be saving at times like this, remember as Gordon Brown once said No More Boom and Bust, come on give the guy a break in was chancellor for 10 years, what could he do..”