Advertisement

We need your help now

Support from readers like you keeps The Journal open.

You are visiting us because we have something you value. Independent, unbiased news that tells the truth. Advertising revenue goes some way to support our mission, but this year it has not been enough.

If you've seen value in our reporting, please contribute what you can, so we can continue to produce accurate and meaningful journalism. For everyone who needs it.

Mike_fleming via Creative Commons
Data Protection

Schools forced to remove CCTV systems by Data Protection Commissioner

The Data Protection Commissioner’s report for 2010 says investigation revealed inappropriate access to insurance data as well as two cases where school has to remove CCTV cameras.

A SECONDARY school in Co Kildare has been ordered to remove CCTV cameras from the school bathrooms by the Data Protection Commissioner after his office received complaints about the system, according to the commissioner’s report for 2010.

Commissioner Billy Hawkes said his office also received complaints over the introduction of CCTV cameras inside and outside a primary school in Co Mayo. The system was switched off on the intervention of the commissioner’s office.

Insurance data

The report includes details of prosecutions brought against Tesco for email marketing and against UPC (then known as Chorus NTL) for unsolicited marketing phone calls, but specifically outlines concerns over the level of access available to personal data contained on a system known as Insurance Link.

The system is a shared database containing the details of around 2.5m claims and is used by insurers to cross-reference and share information regarding insurance claims. However, an investigation by the Data Protection Commissioner found a major lack of transparency regarding the system and said “far too many individuals in insurance companies and other entities” had access to the database.

In the annual report, the commissioner lists some of the serious incidents of inappropriate access which the investigation identified, including:

  • a search for information on a noted celebrity who had not registered a claim
  • someone looking up information on their friends
  • searches for people involved in a car accident which was reported in the papers.

The commissioner said that Insurance Link’s switchover from paper to online searches without adequate oversight of access left it more vulnerable to inappropriate access.

He recommends that all of the system’s members initiate a programme to monitor access.

Although Hawkes’ office received 783 complaints last year, down from 914 in 2009 and 1031 in 2008, about three times more data security breaches were recorded last year than in 2009.

Read the Data Protection Commissioner’s 2010 report in full >

Your Voice
Readers Comments
9
    Submit a report
    Please help us understand how this comment violates our community guidelines.
    Thank you for the feedback
    Your feedback has been sent to our team for review.