data protection

New UK Data Protection Act launched before GDPR

On the 23rd May 2018, the long-awaited replacement to the United Kingdom’s data protection legislation received Royal Assent and completed its journey through Parliament.  The Data Protection Act 2018 as it is now known, will be formally implemented on the 25th May 2018 – coinciding with the Europe-wide implementation of the General Data Protection Regulation (GDPR).

ICO issue warning about data protection breaches


The Information Commissioners Office has published a warning about the implications of contravening data security legislation after an NHS administrator was fined a total of £694.08 including costs and a victim surcharge after pleading guilty to unlawfully accessing personal data in breach of section 55 of the Data Protection Act 1998.  Medway Magistrates Court heard that the defendant had accessed the records of a single patient 279 times in three weeks, with no valid reason or consent for her actions.

The ICO Criminal Enforcement Group Manage, Mike King, provided the following statement:
“Employees, who in many cases are very experienced and capable, are getting into serious trouble and often losing their jobs, usually over little more than personal curiosity.
“The laws on data protection are there for a reason and people have the right to know their highly sensitive personal information will be treated with appropriate privacy and respect. The ICO will continue to take action against those who abuse their position and potentially jeopardise the important relationship of trust between patients and the NHS.”