‘Sensitive personal data’ and the Workplace

  • By Paul Sullivan

A former local government employee was recently prosecuted for unlawfully obtaining sensitive personal data.   

The Defendant pleaded guilty before the Magistrates’ Court and was fined for breaching the Data Protection Act 1998 (Section 55).  What he did was send the details of service users of his then employer’s social care department to an external email account, without the consent of his employer, never mind that of the 349 individuals concerned. The details sent included sensitive personal data including: medical conditions; details of care; financial details and records of debt.

The Information Commissioner's Office (ICO) commented: ‘Employees need to understand the consequences of taking people’s personal information with them when they leave a job role. It’s illegal and when you’re caught, you will be prosecuted.’

This case highlights the importance of how we treat personal data and, in particular, sensitive personal data, in the workplace.

As we have previously highlighted, big changes are coming to data privacy from May 2018.  What steps has your business taken to prepare?

For more information about this article, or any other aspect of our data privacy solutions, call Ferguson & Company now on 028 9032 2998.  There is no charge for initial telephone advice.

Get in touch
Yahoo

Back to all posts

How can we help you?

Contact us today to arrange a free ‘no obligation’ meeting.

Subscribe to eBriefings

* indicates required

Please select how you would like to hear from us:


You can unsubscribe at any time by clicking the link in the footer of our emails. For information about our privacy practices, please visit our website.