The Council of the Isles of Scilly has entered into an undertaking with the Information Commissioner’s Office in respect of two breaches of the Data Protection Act that occurred in June and September 2013, whereby attachments were included in error within emails, and other documents containing personal information entered public circulation.
As a result of these breaches the Council of the Isles of Scilly took the responsible step of referring itself to the Information Commissioner’s Office, seeking advice and guidance to ensure similar breaches do not happen again and to ensure all personal data is handled securely and safely.
As a consequence of this undertaking employees and elected members will be undertaking mandatory data protection training. This is one of a number of significant measures being put in place to improve the Council’s Information Governance and will prevent similar incidents from occurring in the future.