N Irish nursing home fined £15k over data breach

  • 25 August 2016
N Irish nursing home fined £15k over data breach
The Information Commissioner’s Office will not take regulatory action over NHS Digital/

A Northern Irish nursing home has been fined by the Information Commissioner’s Office for failing to protect the sensitive data of its employees and residents.

Whitehead Private Nursing Home in County Antrim was penalised for £15,000 on 15 August for widespread systemic failings in data protection, following a data breach on 21 August 2014.

The penalty notice said the breach occurred when a member of nursing home staff took an unencrypted laptop home, which was then stolen overnight. The laptop contained details about 29 residents including their date of birth, mental and physical health and ‘do not resuscitate’ status.

It also included personal information relating to 46 staff, including details of disciplinary matters and reasons for sick leave.

Ken Macdonald, head of ICO Regions, said: “Whitehead Nursing Home had totally inadequate provisions for IT security and procedure and poor data protection training”.

“Today’s fine shows we can and will act against any organisation we feel is not taking seriously its duty to look after the personal details it has been entrusted with.”

The ICO said the fine is reflective of the size of the nursing home business.

If the penalty is paid by 14 September it will be reduced to £12,000 providing no appeal is lodged.

The nursing home can care for up to 39 clients and is part of the Wilson Group, a Belfast based company that owns five nursing homes.

Read more:
* 56 Dean Street fined £180,000 by ICO
* ICO fines HIV treatment centre £250
* Pharmacy fined for selling patient data

 

Subscribe to our newsletter

Subscribe To Our Newsletter

Subscribe To Our Newsletter

Sign up

Related News

NHS England to adopt new cyber security framework

NHS England to adopt new cyber security framework

The National Data Guardian and NHS England have announced a new cyber resilience framework for health and social care organisations.
Kootenai Health cyber attack impacts 464,000 patients

Kootenai Health cyber attack impacts 464,000 patients

US healthcare provider Kootenai Health has revealed that data belonging to 464,000 patients has been compromised following a cyber attack.
Advanced fined £6m over stolen patient data in 2022 cyber attack

Advanced fined £6m over stolen patient data in 2022 cyber attack

The Information Commissioner’s Office has imposed a £6.09m fine on Advanced for failing to protect personal information during a cyber attack.