The ICO has slapped a health firm with a £200,000 fine for emailing audio recordings of outpatient letters in an unencrypted format, the transcripts of which were then searchable online via an insecure FTP server. The ICO issued the fine to the HCA International Ltd after it was alerted to the fact the transcripts of outpatients letters could be found online. The audio recordings were sent to a company in India for transcribing before being sent back to the staff at HCA International. However, the company used an insecure FTP to store and send the data, meaning it was available online for anyone to access.
View full story
ORIGINAL SOURCE: The Inquirer