Small Business Fined £5000 for Lost Hard Drive
Published on 12 October 2013
When scandals about data protection reach the news, it’s usually huge corporate companies in the firing line. Sony was recently at the forefront of a data protection scandal when millions of Playstation Online users’ personal details were lost when the system was hacked, and this is just one example of many.
Small business owners might have thought their accidental misdemeanours simply fell under the radar, especially considering the amount of media scandal surrounding the likes of Sony’s data disaster, but a sole trader in Wembley had to learn the hard way that this just isn’t the case.
A Wembley-based loans company, Jala Transport Ltd, lost a hard drive containing the personal and financial details of 250 customers, including addresses, details of payments made and identification documents used to support loan applications. The hard drive, along with £3600 in cash, was stolen from the business owner’s car whilst it stopped at a set of traffic lights in London back in August 2012.
The small company was recently fined £5000 for the incident. The fine should have actually been a shocking £70,000, but the amount had to be reduced considering the business’s limited financial resources. Thankfully for Jala Transport, it was taken into consideration that the breach was reported voluntarily, and that was a factor that contributed to the fine being lowered. Nevertheless, the fine will no doubt be debilitating for the small, Wembley-based company.
The hard drive containing the data was password protected, but not encrypted, meaning the company’s customers were left vulnerable to identity theft and fraud.
All businesses, no matter whether they’re big or small, should always encrypt any data stored on an electronic device if they want to avoid seriously breaching the Data Protection Act. Encryption uses a set of complex algorithms to hide the underlying data present on the device, consequently protecting the information.
Similarly, when the information is no longer needed, the device storing the information should be taken to a specialist to be destroyed in accordance with government legislation. If any company fails to do so, they are leaving their customers vulnerable to identity theft and themselves vulnerable to an undoubtedly debilitating £70,000 fine.
This case is a prime example that the penalties enforced by the ICO are not to be taken lightly, so just think, next time your business is storing confidential customer data, could you afford a £70,000 fine?
20 August 2015: COMPUTER RECYCLING AND HARD DRIVE DESTRUCTION
At Lombard Recycling we can collect and recycle old computer equipment and destroy the hard drives
Why you should outsource your paper shredding service
24 March 2015: ANOTHER MOBILE SHREDDING TRUCK ADDED TO THE FLEET
Expansion to our onsite shredding fleet of trucks
07 January 2015: POST-CHRISTMAS RECYCLING – THE BEST STRATEGIES FOR YOUR BUSINESS
Now that the festive period is over and we move into a new year, you need to make sure your business appropriately deals with the post-Christmas mess in the most environmentally-friendly ways.
24 December 2014: HOW TO REDUCE BUSINESS POLLUTION
Your business has an impact on the environment. Whether you’re eco-conscious or not, there’s no denying that companies have a major impact on pollution and the quality of the environment. Take a look at our tips for reducing your company’s carbon footprint.