20 August 2017
visit www.avoka.com

Insurance firm Jubilee Managing Agency found in breach of data protection act

09 July 2009  |  2129 views  |  0 Source: Information Commissioner's Office

The Information Commissioner's Office (ICO) has found Jubilee Managing Agency Ltd in breach of the Data Protection Act after the insurance company reported the loss of an unencrypted disk containing the personal details of around 2100 individual UK policyholders.

Jubilee Managing Agency has signed a formal Undertaking outlining that it will take reasonable measures to keep personal information secure in future. Some of the data on the disk referred to policies, in some cases over 10 years old, that had expired or been cancelled, as well as information on policyholders who had since died or moved address.

A full investigation was carried out by the data controller. Subsequently an independent company reviewed data security arrangements at the company and found a lack of detailed data security procedures and policies, and insufficient staff training.

Sally-anne Poole, Head of Enforcement & Investigations at the ICO, said: "This case is not only a reminder that the appropriate safeguards should be in place to protect personal information, but that organisations must ensure information is accurate and up to date. Organisations should only retain personal information for as long as necessary. It is a matter of some concern to us that expired policies, including financial details, were still available and stored on unencrypted devices.

"Since November 2007, 161 data security breaches have been reported to the ICO in the private sector. We urge all CEOs and their senior management teams to ensure data protection is treated as a corporate governance issue affecting the whole organisation. All organisations need to make sure that safeguarding the personal information of customers and staff is embedded in their organisational culture."

Failure to meet the terms of the Undertaking is likely to lead to further regulatory action by the ICO.

Comments: (0)

Comment on this story (membership required)

Related blogs

Create a blog about this story (membership required)
visit www.worldpaymentsreport.comvisit www.dorsum.euvisit www.niceactimize.com

Top topics

Most viewed Most shared
Mobile contactless spending accelerating in UKMobile contactless spending accelerating i...
9112 views comments | 23 tweets | 23 linkedin
Norwegian banks and startups form fintech clusterNorwegian banks and startups form fintech...
7890 views comments | 19 tweets | 23 linkedin
RBS to bring Silicon Valley to EdinburghRBS to bring Silicon Valley to Edinburgh
7329 views comments | 10 tweets | 7 linkedin
hands typing furiouslyWhy Is Risk Analytics Important?
6519 views 0 | 1 tweets | 1 linkedin
hands typing furiouslyWhy Blockchain Might Not Be The Future For...
6504 views 1 | 5 tweets | 3 linkedin

Featured job

Competitive
London, UK (or flexible)

Find your next job