The Information Commissioner’s Office (ICO) has fined Scottish Borders Council £250,000 for a breach involving the personal information of employees. “This is a classic case of an organization taking its eye off the ball when it came to outsourcing,” said ICO Assistant Commissioner for Scotland Ken Macdonald. The council had contracted an outside company to digitize pension records but failed to “seek appropriate guarantees on how the personal data would be kept secure,” according to an ICO press release. “If one positive can come out of this, it is that other organizations realize the importance of properly managing third parties who process personal data,” Macdonald said.
If you want to comment on this post, you need to login.