Categories: SecurityWorkspace

Manchester Police Slapped With £120,000 Data Breach Fine

Greater Manchester Police has been hit with a £120,000 fine for failing to keep data properly secure, placing information in danger when a USB stick was stolen.

A memory stick containing sensitive personal data, including details of more than a thousand people with links to serious crime investigations, was taken from an officer’s home. As there was no password protection on that stick, the Information Commissioner’s Office (ICO) took action.

During its investigation, the data protection watchdog found a number of officers across the force regularly used unencrypted memory sticks, despite a similar breach taking place in 2010.

Manchester police pay up

The Manchester police force has already paid the fine, avoiding a £150,000 penalty by paying early.

“This was truly sensitive personal data, left in the hands of a burglar by poor data security. The consequences of this type of breach really do send a shiver down the spine,” said David Smith, ICO director of Data Protection.

“It should have been obvious to the force that the type of information stored on its computers meant proper data security was needed. Instead, it has taken a serious data breach to prompt it into action.

“This is a substantial monetary penalty, reflecting the significant failings the force demonstrated. We hope it will discourage others from making the same data protection mistakes.”

The ICO has fined a significant number of public sector firms since it was given the ability to hand out monetary penalties in April 2010. It recently hit a private firm, however, handing Welcome Financial Services (WFS) a £150,000 fine for a data breach that saw over half a million customers’ details go missing.

Yet last week, the watchdog praised the private sector for its data protection practices, although the data on which its assumptions were based was called into question.

Are you a security guru? Try our quiz!

Thomas Brewster

Tom Brewster is TechWeek Europe's Security Correspondent. He has also been named BT Information Security Journalist of the Year in 2012 and 2013.

View Comments

  • The idiot officer in question should be sacked, it's just pure laziness and blatant negligence. It's not an isolated incident and there have been plenty of warnings in the past so there should be no excuse. Zero tolerance!

Recent Posts

Craig Wright Sentenced For Contempt Of Court

Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…

2 days ago

El Salvador To Sell Or Discontinue Bitcoin Wallet, After IMF Deal

Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…

2 days ago

UK’s ICO Labels Google ‘Irresponsible’ For Tracking Change

Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…

2 days ago

EU Publishes iOS Interoperability Plans

European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…

3 days ago

Momeni Convicted In Bob Lee Murder

San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…

3 days ago