Reading:
“Will our data ever be secure?” – Data breaches are an ‘inside job’ as well as an ‘outside job’
Share:

Data Leak Lawyers - Begin Your Data Breach Claim Today!

Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.

Start Your Claim
Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy

solicitors regulation authority

“Will our data ever be secure?” – Data breaches are an ‘inside job’ as well as an ‘outside job’

Data breaches are not always the work of outside hackers. In this, and many other cases, employees are guilty of causing the breaches.

It’s a point that must be reiterated as some people are unaware of the actual statistics. In one example, a former employee took more than 10,000 records with him when he left a company in November 2015 triggering a breach of monumental proportions.

Nature of the data breach

The former governmental employee took over 10,000 records by copying the data onto two pen drives, and regulators notified the government of the ‘major security incident’. A review of the breach took place in August 2016 following a change in policy that prevented employees from transferring information onto a removable drive unless approved by a supervisor.

This is a clear data breach and potentially puts thousands of people’s personal data at risk.

Investigation

The authority responsible for investigating the matter concluded that the unauthorised access was classified as a ‘major incident’ but went on to say that there was no evidence to suggest that the information had been disclosed to the public or misused in anyway.

Although the investigation team gives its assurances, it goes to show that data breaches can happen anywhere, at any time, and by anyone. This case goes to show that many individuals are vulnerable to these ‘insider jobs’ and it’s a scary thought that many could have unauthorised access to our personal data. If organisations like the government cannot adequately secure our personal data, who can?

Although the data breach was apparently not high risk to the government, in practice, it still highlights the fact that companies and organisations are not doing enough to prevent unauthorised access to personal data, leading to data breaches. This may not be an isolated event – investigators highlighted the data transferred by the former employee, but there is shortly going to be a review of other files.

Policies to secure our personal data

It begs the question – will our data ever be secure? The stark truth is probably not.

If companies and organisations do not have stringent data protection procedures in place, the risk of a data breach increases.

It’s no use that companies and organisations are reactive to data protection; they should always be proactive and on guard in our view. Policies and technical safeguards have been implemented in response to the ‘major incident’. These policies and safeguards will probably never be 100 per cent foolproof. Somewhere down the line, employees, organisations, or even outside cyber-hackers may circumvent these rules. In response to this, greater penalties should be imposed.

Data protection necessary now more than ever

Data breaches have spiked in recent years, which could be due to a number of problems, but the one that arguably has the greatest contribution is the lack of cybersecurity and procedures enforced. By having a relaxed attitude towards data protection, businesses and organisations are effectively allowing personal data to be accessed by unauthorised persons, either an insider or otherwise.

Until businesses and organisations pluck up their ideas and seek to implement maximum security protection, personal data is at risk of unauthorised access, whether lost or stolen. This highlights the digital era that we are in, one that questions the security of our personal data.

The content of this post/page was considered accurate at the time of the original posting and/or at the time of any posted revision. The content of this page may, therefore, be out of date. The information contained within this page does not constitute legal advice. Any reliance you place on the information contained within this page is done so at your own risk.

We offer genuine No Win, No Fee agreements for our clients. Why we do this is simple:

Leading Data Breach Lawyers
Our experience speaks for itself.
We will fight for your right to compensation.
Access to Justice
As a victim of a data breach or hack, you deserve your chance to get access to justice.
Risks Assessment
We carefully risk assess your case and take it on if we think we have a good chance of winning the claim.

Request A Callback From Our Team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy
SRA
Contact
www.dataleaklawyers.co.uk is © of Your Lawyers Limited - we are 'Authorised and Regulated by the Solicitors Regulation Authority (SRA number 508768)'
arrow-up icon