recent work

London Ambulance Service breaks data laws after laptop containing patient information stolen

The Information Commissioners Office has demanded that the London Ambulance Service sign a formal undertaking to ensure that its data and IT policies and procedures are adequate, understood, followed by staff and regularly checked for efficiency.

Over 2,664 different patient’s data was stored on the personal laptop of an agency staff member; this laptop was unencrypted, and was stolen.

Although medical details were not contained on the laptop, names, addresses, dates of birth and NHS numbers were.

It has been confirmed that the agency staff member did have a legitimate reason to access the records, however they did breach policy by using unencrypted and personal computers.

In future, The London Ambulance Service will need to ensure that all its staff members, whether agency or not, are made aware of the policies and procedures surrounding personal data.

Comment
Absolute Data is committed to helping companies and organisations, regardless of their size, create and follow realistic data policies and procedures that are above the law. We can spend some time getting to know what data-related activity your business partakes in, and ensure that your policies and procedures reflect this activity. We can also help to train your staff; not only in the importance of data protection, but how they can ensure they are fully adhering to data protection law. With the ICO’s power to fine up to £500,000 for data breaches, it is worth getting in touch with us to discuss how your organisation can ensure legal data compliance. Contact us now at info@absolute-data.co.uk or call us on 01423 790125.