ZDNet UK

• CNET NETWORKS UK BUSINESS SITES:
• atlarge.com
• BNET UK
• silicon.com
• SmartPlanet.com
• ZDNet.co.uk

NHS trust loses 21,000 patient details on laptop

• Tags:
• Trust,
• Act,
• Laptop,
• Letter

Nick Heath silicon.com

Published: 01 Jul 2008 08:42 BST

A hospital trust has lost an unencrypted laptop containing details of thousands of patients.

The Information Commissioner's Office (ICO) will investigate whether Colchester Hospital University NHS Foundation Trust breached the Data Protection Act when it failed to encrypt 21,000 patient details.

The laptop, containing patient names, dates of birth, postcodes and treatment details, was stolen from the car of a Colchester trust manager.

The manager has been suspended following the theft on 18 June. Trust chief executive Peter Murphy has admitted the laptop should have been encrypted.

The Department of Health recently revealed it would take at least six months for trusts to complete encryption of all machines.

The Colchester hospital trust refused to confirm how much other patient data it held was unencrypted, citing "security reasons".

Despite this, Murphy said in a letter that patients should be reassured that "the trust takes security and patient confidentiality very seriously".

Murphy told patients in a letter: "The trust offers all affected patients its sincere apologies for putting their confidential information at risk."

Murphy added that there is a "very small chance that patient details can be accessed" and that the trust believes "the data will almost certainly by wiped by the thief".

The ICO took enforcement action against Marks & Spencer in January for breaching the Data Protection Act by failing to encrypt staff information on a stolen laptop.

Credit: NHS data left lacking encryption from silicon.com

• The top five internal security threats
• Keeping mobile data from going walkabout
• Lib Dems call for data guardians
• Worker suspended over loss of prisoner data
• Ministry of Justice reports nine data breaches
• Foreign Office reports five data breaches since 2007
• ICO: Gov't ignoring data-sharing hazards
• Lords presses government for data-breach law
• Video: Get the most out of your data
• Justice minister urges overhaul of gov't data handling
• MoD announces data-protection action plan
• Systemic failure blamed for HMRC data loss

Did you find this article useful?
5 out of 5 people found this useful

• Share this article:
• Digg
• Slashdot
• Del.ici.ous
• Stumble
• Reddit

Post a comment

Full Talkback thread

0 comments

• Most Recent
• Most Popular
• Most Discussed

More in this Special Report

The top five internal security threats

It's widely known that internal staff are the biggest threat to IT security, but what specifically should an employer watch out for? more

Keeping mobile data from going walkabout

Mobile email is no longer the preserve of upper management but providing access to company information on the go has its risks more

Lib Dems call for data guardians

The Liberal Democrats are seeking the introduction of data guardians into the public and private sector, to protect citizens' information rights more

Worker suspended over loss of prisoner data

An employee at Home Office contractor PA Consulting has been suspended after the loss of a memory stick holding the unencrypted details of every prisoner in England and Wales more

Ministry of Justice reports nine data breaches

The ministry reported the data breaches, affecting around 45,000 people, to the Information Commissioner's Office in the last financial year more

Foreign Office reports five data breaches since 2007

The data breaches at the Foreign and Commonwealth Office are thought to have affected less than 188 people in total more

ICO: Gov't ignoring data-sharing hazards

The government is blindly pursuing data-sharing plans without heeding the potential pitfalls, information commissioner Richard Thomas has claimed more

Lords presses government for data-breach law

The House of Lords has again urged the government to introduce a data-breach notification law, adding that banks should be liable for e-fraud losses more

Video: Get the most out of your data

How do companies deal with information management? Jonathan Steel, CEO of tech-research firm The Bathwick Group, gives insights based on a recent ZDNet.co.uk benchmark survey more

Justice minister urges overhaul of gov't data handling

Michael Wills has called for the government to handle data transactions as carefully as financial transactions more

MoD announces data-protection action plan

The ministry has published a plan of how it intends to meet 51 data-policy recommendations made as part of review into the loss of MoD laptops more

Systemic failure blamed for HMRC data loss

Two reports have found the loss by HMRC of 25 million child-benefit claimant details was 'entirely avoidable' more

Featured Oracle Resources

Human Resources Management eBook

Supply Chain Management eBook

Design and Innovation Report

Economist Intelligence Unit Report - Technology and growth at mid-sized companies

See All White Papers

Company/Topic Alerts

Create a new alert from the list below:

Data loss
Data breach
Information commissioner

Data protection
ICO

Install Flash Player Plugin