IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

ICO tells British Council to encrypt after data breach

The Information Commissioner’s Office has taken action against the British Council after it lost a disc containing trade union details.

The British Council has been told to clean up its act by the Information Commissioner's Office (ICO), after losing a disc containing a trade union membership list.

The disc was lost in January by a courier and originally said to contain bank and insurance details. The ICO revealed it actually contained personal data on 2,000 trade union members in addition to bank details.

While the British Council claimed at the time of the breach that the disc was secure and required special equipment to access, the ICO noted that the disc was in fact unencrypted.

The ICO has requested that the British Council sign an agreement to improve its security measures, including immediately encrypting all portable data storage devices.

Mick Gorrill, assistant Information Commissioner, said in a statement: "The British Council proactively reported the breach to the ICO and took immediate remedial action which demonstrates its understanding of the seriousness of this data loss."

A British Council spokesperson told IT PRO that it always aims to meet or exceed the data protection act. "The British Council is committed to implementing the requirements of the UK Government's Data Handling Review."

Click here to read some of the lessons the British Council should have learned from previous public data breaches.

Featured Resources

Four strategies for building a hybrid workplace that works

All indications are that the future of work is hybrid, if it's not here already

Free webinar

The digital marketer’s guide to contextual insights and trends

How to use contextual intelligence to uncover new insights and inform strategies

Free Download

Ransomware and Microsoft 365 for business

What you need to know about reducing ransomware risk

Free Download

Building a modern strategy for analytics and machine learning success

Turning into business value

Free Download

Recommended

MoJ faces £17.5m GDPR fine over subject access request backlog
data protection

MoJ faces £17.5m GDPR fine over subject access request backlog

20 Jan 2022
Cabinet Office fined £500,000 for New Year Honours data leak
data breaches

Cabinet Office fined £500,000 for New Year Honours data leak

3 Dec 2021
ICO publishes new data protection standards for the adtech industry
data protection

ICO publishes new data protection standards for the adtech industry

25 Nov 2021
Celebrity data leaked after ransomware attack on London's Graff jewellers
ransomware

Celebrity data leaked after ransomware attack on London's Graff jewellers

1 Nov 2021

Most Popular

Windows Server admins say latest Patch Tuesday broke authentication policies
Server & storage

Windows Server admins say latest Patch Tuesday broke authentication policies

12 May 2022
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

13 May 2022
How full-stack observability can accelerate IT innovation
Sponsored

How full-stack observability can accelerate IT innovation

3 May 2022