Thomas Bridge 07 June 2013

ICO fines Glasgow £150k for data breach

Glasgow City Council has been fined £150,000 following the loss of two unencrypted laptops, one of which contained personal information about 20,143 residents.

The monetary penalty, issued by the Information Commissioner’s Office (ICO), came after the laptops – containing the town hall’s creditor payment history file and 6,069 individuals’ bank account details - were stolen from council offices in May last year.

Complaints of theft and a lack of security had already been made about the council premises where the theft took place.

One laptop had been locked in a storage drawer and the key placed in an unlocked drawer with the second laptop.

This breach of the Data Protection Act comes two years after Glasgow was issued with an enforcement notice for losing an unencrypted memory stick containing personal data.

Despite previous warnings, the latest ICO investigation found Glasgow had issued a number of staff with unencrypted laptops – some of which were later encrypted - after encountering software problems. In total, the ICO found 74 unencrypted laptops remain unaccounted for at the town hall, six of which have been stolen.

Glasgow is now required to carry out a full audit of its IT assets used to process personal data and arrange for all its managers to receive asset management training. The local authority will also carry out an annual check of devices.

The ICO’s assistant commissioner for Scotland, Ken Macdonald, said: ‘Glasgow City Council was issued with an enforcement notice back in 2010 after a similar incident where an unencrypted memory stick was lost. To find out that these poor practices have returned some two years later shows a flagrant disregard for the law and the people of Glasgow.

‘The council should be held to account, and the penalty goes some way to achieving that.’

A Glasgow City Council spokesman said: ‘This data loss should not have happened and we took immediate steps to ensure it does not happen again. It is important to note that the number of unencrypted laptops was already coming down when this theft occurred.

‘The council co-operated fully with the ICO and wrote to everyone potentially affected to advise them of the data loss. The ICO acknowledges there is no evidence that any bank accounts have been targeted, that the council immediately informed it of the theft and that we carried out significant remedial action.’

Analysis

10 ways councils are making budgets go further

Discover 10 ways councils are stretching budgets further, from digital transformation and energy efficiency to community partnerships and data-driven decision-making.

Opinion

Fiscal Devolution – has stuff just got real?

As Andy Burnham prepares to enter Downing Street, Localis' Jonathan Werran asks whether his premiership will unlock tax-raising powers for local government.

Most Popular News

Reed defied officials' advice on DPP reorg plans

Harry Potter star wins approval for eco-village

Council launches safeguarding review after toddler's death

Nine councils stripped of planning powers

Government publishes social cohesion action plan

New Products

Safeguarding Children - the AAT Way

MSL enhances hygiene auditing with air quality testing for Awaab’s Law compliance

Cadcorp launches Mapestry

Bolton Council Upgrades 120+ School Crossings with Smart CMS Control by Lucy Zodion

NEC CONTRACTS HAS GONE DIGITAL: PAPERLESS, TO GIVE YOU MORE

Vent-Axia Delivers Social Housing a Smart Ventilation Solution Ahead of Awaab’s Law

New remotely lockable cabinet will help manage medication for people with mental health issues

Case Studies

Cornwall’s Coastal Heritage Lighting Upgraded with Acrospire Lanterns

Acrospire Delivers Durable Handrail Lighting Upgrade for Historical Landmark Jacob’s Ladder

Acrospire Delivers Seamless Heritage Lighting Upgrade on Bath’s North Parade Bridge

Acrospire Delivers Retrofit Lighting for Newbridge’s Joe Calzaghe Footbridge

Acrospire Delivers PIR-Controlled Lighting at Ruislip Lido Car Park

Spennymoor Market Place and Consett Middle Street revitalised using Thorn Lighting’s Thor Lanterns and Customisable Gobo Projectors

Acrospire Partners with Bath & North East Somerset Council to Illuminate Historic Film Location with LED Upgrade

Company Anouncements

Acrospire promotes LED retrofit for structurally viable lighting assets

Vent-Axia Welcomes the Future Homes Standard as Competency Takes Centre Stage

Apricorn Becomes First and Only Hardware-Encrypted USB Storage Device Manufacturer to Achieve AS9100 Certification

AAT helps Councils step up to address children’s social care

CU Phosco Approved as a Crown Commercial Service Supplier

Acrospire triumphs at the 2025 HEA Awards with Sustainable Project of the Year

TRT Lighting retrofit helps Lincolnshire County Council cut street lighting energy use by over 65%

Director of Legal and Governance

£109,000

The new Cumbria Combined Authority has been established to unlock that potential. Cumbria

Recuriter: Cumbria Combined Authority

Executive Director of Finance

£131,000

The new Cumbria Combined Authority has been established to unlock that potential. Cumbria

Recuriter: Cumbria Combined Authority

Reviewing Officer

Grade 6 - £28,142 - £31,022 (pay award pending)

We are looking to appoint a full time Reviewing Officer working within a Countywide Adult Care Learning Disability Review Team overseeing the annual r Durham

Recuriter: Durham County Council

Lunchtime Supervisor

£24,796 pro rata (Pay award pending)

Permanent, Part time. Term time only. 11.30am to 1.00pm daily The Governors of Red Rose Primary School wish to appoint two enthusiastic and motivated Durham

Recuriter: Durham County Council