Yorkshire Building Society has been found to be in breach of the Data Protection Act by the UK's Information Commissioner's Office, following the theft of an unencrypted laptop containing customer data. The laptop, which was found within 48 hours, was stolen from the Cheltenham branch of the building society in April and contained a 'substantial part of the CBS customer database'.
When will banking companies begin to take seriously the security of customer data and put in place processes and controls to ensure such data is adequately protected. Has it become cheaper to pay the fines than change the internal processes and deliver training to all staff!
No comments:
Post a Comment