- Insider threat looms large in San Francisco
- Woman fired over death threat
- IT admin pleads not guilty
- Tape storage gets more dense
- Top 10 worst uses for Windows
News | Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:App Performance | On Demand Security | Networking Solution | SOA | Value of WDS
Over 600 staff at HM Revenue and Customs have been disciplined or fired in a three year period after they accessed sensitive data without authorization.
Jane Kennedy, financial secretary to the Treasury, said the staff were either given a warning or were sacked following "inappropriate access to personal or sensitive data" between when HMRC replaced the Inland Revenue, in April 2005, and December last year. Many of the data breaches resulted in dismissal, she said.
HMRC had a "strict policy" in place to prevent staff from accessing citizen records unless there was a legitimate need, Kennedy explained. "Breaches of this policy are taken seriously and any breach will result in the commencement of disciplinary proceedings."
HMRC discussed 11 data security incidents with the Information Commissioner during the period.
Kennedy said that HMRC now has more stringent controls in place, ensuring that transfers on bulk data on removable devices would only take place when there was "adequate security protection."
Last November, HMRC lost 25 million child benefit records and a CD containing 15,000 names, national insurance numbers and dates of birth of thousands of holders of Standard Life pensions.
In March this year, HMRC was named 'Internet Villain' of the year by the Internet Services Providers' Association (ISPA).
The House of Lords this week backed an amendment to the Criminal Justice and Immigration Bill, meaning losing personal data may soon become a criminal offense.
Rss FeedRss Feed
Investment of a Technology should be 'held off' because there hasn't been enough investment in it yet? Is...- Anonymous
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask to prospective vendors to get the right endpoint solution.
Download the white paper.
Unauthorized applications: Taking back control
Employees installing and using unauthorized applications like IM, VoIP, games and peer-to-peer file-sharing applications cause many businesses serious concern. How do you control these applications?
Download the white paper.
Comment