Categories: SecurityWorkspace

Bank Account Mixup Lands Prudential With £50k Fine

The Information Commissioner’s Office (ICO) has handed out a rare fine to a private sector organisation for mishandling of information, as Prudential was told to cough up £50,000.

The penalty was served after a mix-up of two customers’ account details led to tens of thousands of pounds being handed to the wrong person. Instead of going into one individual’s retirement fund, it actually went to a different customer’s account.

In its defence, Prudential said the mixup was partly down to the fact that the two customers had the same name and date of birth.

Prudential mixup

The fine marks the first time a private company has been punished by the ICO where there was no “significant data loss”. Prudential has accepted the fine and will not appeal, even though it passed the blame onto an independent financial adviser.

“We are very sorry for any distress and inconvenience experienced by the two customers, and we have apologised and compensated them. We regret that this incident occurred and was not resolved more quickly,” a spokesperson for Prudential said.

“The … accidental merging of the two customers’ details was not the result of system or process failures. It originally happened when the financial adviser of the first customer mistakenly provided the address of the second customer to us and requested that we change the first customer’s registered address.

“The problem was rectified in 2010 to the satisfaction of the ICO. We co-operated openly and fully with the review and we accept the fine imposed. Neither customer has suffered financial loss.

“When this issue came to light we reviewed our procedures and staff training and made changes to minimise the chances of a similar error occurring again.”

Stephen Eckersley, ICO head of enforcement, said the customer files were “consistently confused” and Prudential “failed to remedy the situation despite being alerted to the problem on more than one occasion before it was finally resolved”.

“We hope this penalty sends a message to all organisations, but particularly those in the financial sector, that adequate checks must be in place to ensure people’s records are accurate,” he added.

Are you a security pro? Try our quiz!

Thomas Brewster

Tom Brewster is TechWeek Europe's Security Correspondent. He has also been named BT Information Security Journalist of the Year in 2012 and 2013.

Recent Posts

Apple Sales Rise 6 Percent After Early iPhone 16 Demand

Fourth quarter results beat Wall Street expectations, as overall sales rise 6 percent, but EU…

24 hours ago

X’s Community Notes Fails To Stem US Election Misinformation – Report

Hate speech non-profit that defeated Elon Musk's lawsuit, warns X's Community Notes is failing to…

1 day ago

Google Fined More Than World’s GDP By Russia

Good luck. Russia demands Google pay a fine worth more than the world's total GDP,…

1 day ago

Spotify, Paramount Sign Up To Use Google Cloud ARM Chips

Google Cloud signs up Spotify, Paramount Global as early customers of its first ARM-based cloud…

2 days ago

Meta Warns Of Accelerating AI Infrastructure Costs

Facebook parent Meta warns of 'significant acceleration' in expenditures on AI infrastructure as revenue, profits…

2 days ago

AI Helps Boost Microsoft Cloud Revenues By 33 Percent

Microsoft says Azure cloud revenues up 33 percent for September quarter as capital expenditures surge…

2 days ago