Digital Defences

You are here: silicon.com > Research > Special Reports > Digital Defences

Digital Defences

Gordon Brown orders data security spot checks

Stable door, horse, bolted?

Printer Friendly Email Story RSS

By Andy McCue

Published: 22 November 2007 12:54 GMT

The government has agreed to data security spot checks across all departments by the Information Commissioner following the loss of 25 million records of child benefit recipients by HM Revenue & Customs (HMRC).

Prime Minister Gordon Brown said all government departments and agencies will also have their procedures for the storage and use of data checked by security experts.

During Prime Minister's questions in the House of Commons yesterday, he said: "We will give the Information Commissioner the power to spot check departments, to do everything in his power and our power to secure the protection of data."

Security A to Z

From antivirus to zero-day, click here for silicon.com's alphabetical guide to security.

The u-turn follows the rejection by ministers of similar proposals put forward by House of Lords Science and Technology select committee just a month ago. The government then said the current enforcement regime for data protection was "fit for purpose".

Brown also apologised to the 25 million people who have had their names, addresses, dates of birth, National Insurance numbers and, in some cases, bank account details compromised by the HMRC blunder.

He said: "I profoundly regret and apologise for the inconvenience and worries that have been caused to millions of families who receive child benefit."

But Conservative Party leader David Cameron hit back and said: "I have to say to the Prime Minister that if a junior official in an organisation can access so much information and send it not once, not twice but three times, that is evidence of systemic failure."

Information Commissioner Richard Thomas welcomed the powers to spot check government departments without the need for consent but he also called for data breaches of this scale to be made a criminal offence.

He said in a statement: "It is also important that the law is changed to make security breaches of this magnitude a criminal offence. At the moment I can take limited enforcement action but making this a criminal offence would serve as a strong deterrent and would send a very strong signal that it is completely unacceptable to be cavalier with people's personal information."

As the full story behind the HMRC breach continues to unfold, the Conservative Party is also claiming senior HMRC officials - and not the junior official blamed by Chancellor Alistair Darling - authorised the sending of the data.

The Tories claim the National Audit Office only requested "desensitised" data containing National Insurance numbers but were told by HMRC that it was too difficult and costly to separate this out. The government has hit back saying these claims are inaccurate.

Add Comment Add comment  Printer Friendly Print story with   Email Story Email story  
In this Special Report
Locking down financial security
Video Cheat Sheet: Biometrics
Filtering's ding-dong fight with malicious spam
HMRC's missing discs: Just a warning shot
Web 2.0 threat looms
Leader: It's time for a data breach disclosure law
Editor's Blog: Missing data, missing brains
Malware: From bedroom to boardroom

Back to Digital Defences Special Report


Reader Comments

it strikes me that HMG use people, written procedu...
Karen Challinor

Another revealing aspect of this data breach is th...
Lionel A Smith

Spot checks are useless unless they are used to en...
misceng

Click here to see all

Related Links

How did 25 million records get 'lost in the post'?

Missing: 25 million child benefit records

Pensions details on lost CD not encrypted

Taxman gets new CIO

HMRC slammed over Capgemini contract costs

Fraud-hit tax credits website to remain closed

Tax office CIO gets 20 per cent pay rise

Taxman's IT bill could rocket to £6bn

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure
RELATED WHITEPAPERS FROM MESSAGE LABS

Understand the Rise of PDF Spam — FREE Whitepaper: PDF

The Legal Risks of Uncontrolled Email and Web Use — FREE Whitepaper

Unmasking the Online Bad Guys — FREE Whitepaper

Social Networking and The Employer's Dilemma — FREE Legal Guide

Reduce the Risks of Uncontrolled Email and Web Usage — FREE ePolicy Guide

Digital Defences News

Cyber-extortion on the rise - but targets the 'fringe'
…it's a bit of a gamble

Data breach hits thousands of motorists
More info goes missing in the post...

Encryption not the key to data security
CIO Jury: People and processes more important

Data security a top priority for Europe
EC: Collaboration is key…

Poll: The most expensive gadgets lost are...
So where did you see it last?

Digital Defences Extra

Stories from around the web...

Security increasingly vital to telecoms service delivery CCNMoney.com

Looming online security threats in 2008 Business Week

Top five worst IT security mishaps of 2007 ZDNet UK

Botmaster admits infecting 250,000 computers News.com

RELATED RESOURCES FROM MESSAGE LABS

Newham College Saves Time & Money with MessageLabs

MessageLabs Makes Life Easier for Pilkington

ICI Eliminate Email Problems with MessageLabs

Lloyds TSB Banks on MessageLabs Protection

Autoglass Eradicate Spam Thanks to MessageLabs



Quick Sitemap Links: