Data is a key commodity for businesses, so it’s not surprising that it’s vulnerable to theft by employees, as Leicester City Council recently found.
When the Council discovered that a former employee had unlawfully obtained the personal data of over 300 service users from the Council’s database, they reported the matter to the Information Commissioner's Office (ICO). The ICO successfully prosecuted the Council’s former employee in Nuneaton Magistrates Court, where he was fined £160 and ordered to pay £364.08 costs as well as a £20 victim surcharge. It’s believed he may have intended to use the data to assist with a new business venture.
What steps can you take if this happens?
- Send a letter to the individual advising they have committed a criminal offence and it is in their interest to cease immediately from continued use of the data.
- Notify the Information Commissioner’s Office (ICO).
- Make a Court application for a delivery up order and destruction of the confidential information.
You're on our blog and updates site, which is hosted by elXtr, a leading digital hub powered by the award-winning lawyers at LHS Solicitors LLP, bringing you real law, made easy. Find out more about elXtr here.
Law for the online generation starts here.
“People’s personal data is protected by law and employees should not be helping themselves to information if they decide to set up a new business or move to a new position.”