The Independent reports on data breaches experienced by the National Health Service from April 2019 to March 2021. According to the U.K. Information Commissioner's Office, the NHS reported 866 data breaches, including personal data mailed to the wrong person and the loss of paperwork and laptops. Of those breaches, 12 cases involved a party altering data without patient consent.
Full Story
shareShare This
Related Stories
Reducing risks and valuing compliance with the European Data Protection Seal under the GDPR
There are more than 70 references to certification, covering privacy by design, data transfers to processors, adequacy of technical and organizational measures, and international data transfers, in the EU General Data Protection Regulation.
The European Data Protection Seal is a GDPR-certification ...
What to know about complying with the European Data Protection Seal
European Center for Certification and Privacy co-Chair Sébastien Ziegler writes about how to reduce risks and qualify for the European Data Protection Seal under the EU General Data Protection Regulation. He broke down the process for certification to two major steps as well as the benefits of seeki...
Norway's DPA responds to proposal to modify the Civil Protection Act
Norway's data protection authority, Datatilsynet, said it disagreed with the proposal to modify the Civil Protection Act due to personal data processing implications. Datatilsynet said the changes would allow "personal data collected in crisis situations to be further processed for incompatible purp...
CNIL orders company to minimize employee data processing
France's data protection authority, the Commission nationale de l'informatique et des libertés, ordered an unidentified company to improve data minimization practices for employee and job candidate data. The CNIL said issued the order following a complaint the company collected unnecessary data from...
Switzerland's DPA finds online retailer violated data processing standards
Switzerland's Federal Data Protection and Information Commissioner published details on its investigation into online retailer Digitec Galaxus. The FDPIC claimed the company violated the principle of proportionality by "linking the examined data processing to the obligation to create a customer acco...
Comments
If you want to comment on this post, you need to login.