Data destruction and IT asset disposal are heavily regulated and complex areas, especially within the NHS, which is responsible for the safekeeping of extremely personal data on millions of UK citizens.
In the light of escalating efforts by the Information Commissioner’s Office (ICO) to ensure compliance with the Data Protection Act 1998, data destruction specialist, Julie Pickersgill, of Advanced Digital Dynamics, outlines the requirements on estates departments for the secure disposal of IT equipment – and how to avoid falling foul of the law.
It seems that hardly a week goes by without a story in the news highlighting yet another breach of data security by an NHS Trust or other Government body. Only recently the ICO imposed a £200,000 penalty on NHS Surrey after patient records were found on a secondhand computer bought through an online auction site. In 2012-2013, the watchdog imposed civil monetary penalties of over £2.6 million on 23 data controllers and organisers – for serious breaches of the Data Protection Act and Privacy and Electronic Communications Regulations.
Laying down the law
Log in or register FREE to read the rest
This story is Premium Content and is only available to registered users. Please log in at the top of the page to view the full text.
If you don't already have an account, please register with us completely free of charge.
