recent work

Council caught out by poor processes and training

East Riding of Yorkshire Council has formally agreed to improve its data protection measures after two separate incidents led to the council breaching UK data laws, the Information Commissioner’s Office has confirmed following two separate incidents in April and May last year.

In one incident an employee was said to have mistakenly included sensitive personal data about one family in a response to a subject access request made by another. And in the other a student social worker was said to have revealed to the parent of a child under assessment the first name of an individual who had made an anonymous referral about that parent to the council’s children’s services team.

The ICO said that both incidents could be attributed to a “general lack of data protection awareness and training, together with a lack of proper management or checking procedures when dealing with subject access requests or supervising non-employees, such as students on placement”.

Tags: ,