ICO Fines Basildon Council £150,000 For Leaking Personal Data

The Information Commissioner’s Office (ICO) has again wielded its teeth by fining Basildon Council £150,000 for publishing the personal information of a family online.

The council breached the Data Protection Act by publishing the data in publicly available planning application documents, incurring the wrath of the ICO less than a month after it fined Keurboom Communications Ltd $400,000 for carrying out nearly 100 million nuisance calls.

Earlier this year the regulator also handed out a £150,000 fine to Royal & Sun Alliance Insurance (RSA) after it lost a hard drive containing the personal information of nearly 60,000 customers.

No mercy

The ICO found that the council received a written statement in support of a householder’s planning application which contained sensitive information relating to a traveller family who had been living on the site.

Particular references were made to the family’s disability requirements, including mental health issues, the names and ages of all the family members and the location of their home.

Basildon council published the statement on its online portal without removing the personal data, resulting in a breach of data protection procedures.

“This was a serious incident in which highly sensitive personal data, including medical information, was made publicly available,” said ICO enforcement manager Sally Anne Poole. “Planning applications in themselves can be controversial and emotive, so to include such sensitive information and leave it out there for all to see for several weeks is simply unacceptable.”

Scrutiny of cases such as this will continue to increase over the coming months, with less than a year to go until Global Data Protection Regulations (GDPR) come into effect across the European Union.

Information Commissioner Elizabeth Denham recently called for businesses to restore trust with GDPR and it’s clear that organisations still have plenty of work to do to make themselves compliant within the timeframe.

Quiz: Are you a privacy expert?

Sam Pudwell

Sam Pudwell joined Silicon UK as a reporter in December 2016. As well as being the resident Cloud aficionado, he covers areas such as cyber security, government IT and sports technology, with the aim of going to as many events as possible.

View Comments

  • The ICO are certainly cracking down on companies that persits in spamming or failing to looking after consumer data properly.

    Fines have increased by 58% in the past year and January was a record month for ICO fines.

    The ICO name and shame all the guilty companies on their website but they don't categories the fines or offer any further trend analysis.

    My company, The SMS Works, has trawled through all this fines data and it certainly throws up some interesting and sometimes puzzling findings.

    For example, the fines for email spam are on average, just half of those for SMS spam.

    You might find it intriguing reading.

    https://thesmsworks.co.uk/breach-report-ico-fines-analysis-infographic

Recent Posts

Craig Wright Sentenced For Contempt Of Court

Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…

3 days ago

El Salvador To Sell Or Discontinue Bitcoin Wallet, After IMF Deal

Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…

3 days ago

UK’s ICO Labels Google ‘Irresponsible’ For Tracking Change

Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…

3 days ago

EU Publishes iOS Interoperability Plans

European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…

4 days ago

Momeni Convicted In Bob Lee Murder

San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…

4 days ago