British abortion group fined over personal data hack

Mar 08, 2014

Britain's biggest abortion provider was fined Friday by a data protection watchdog after a computer hacker obtained the details of thousands of women who had sought its help.

Convicted James Jeffery threatened to publish the names of those who sought advice from the British Pregnancy Advice Service (Bpas) charity.

The Information Commissioner's Office watchdog criticised the provider for not storing personal data securely and fined it £200,000 ($335,000, 240,000 euros) for a "serious breach" of the Data Protection Act.

The ICO said Bpas "didn't realise" that its own website was storing names, addresses, dates of birth and , how long the information was being retained for, nor that the website was not sufficiently secure.

"Ignorance is no excuse," David Smith, the ICO's deputy commissioner and director of .

"It is especially unforgivable when the organisation is handling information as sensitive as that held by the Bpas. Data controllers must take active steps to ensure that the they are responsible for is kept safe."

Jeffrey was jailed for two years and eight months in 2012 for the theft of 10,000 database records held by the charity containing women's personal details.

A member of the international computer hacking group Anonymous, Jeffrey was described by the judge in the case as a "zealot with an anti-abortion campaign".

Bpas said the hacker did not obtain medical records, and it intends to appeal against the fine.

"We accept that no hacker should have been able to steal our data but we are horrified by the scale of the fine, which does not reflect the fact that Bpas was a victim of a serious crime," said chief executive Ann Furedi.

"Bpas is a charity which spends any proceeds on the care of women who need our help.

"It is appalling that a hacker who acted on the basis of his opposition to abortion should see his actions rewarded in this way."

Explore further: Hacked emails slice spam fast

add to favorites email to friend print save as pdf

Related Stories

UK police quiz man over abortion website attack

Mar 09, 2012

(AP) -- Police have arrested a man suspected of hacking into the website of a major British abortion provider, vandalizing it and stealing sensitive data, officials said Friday.

Sony fined in UK over PlayStation cyberattack (Update)

Jan 24, 2013

British regulators have fined Sony 250,000 pounds ($396,100) for failing to prevent a 2011 cyberattack on its PlayStation Network which put millions of users' personal information—including names, addresses, ...

Recommended for you

Hacked emails slice spam fast

15 hours ago

Spam spreads much faster and to more people when it is being propagated by hacked, or otherwise compromised, email accounts rather than legitimate accounts, according to research published in the International Journal of ...

Ten ways to stay safe while shopping online

Nov 25, 2014

As the holiday shopping season gets underway, the importance of avoiding hackers, phishing scams and phony websites while buying online becomes increasingly important.

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

Hev
5 / 5 (2) Mar 08, 2014
It is not right that the BPAS should be fined, as they help and care for women who have unwanted pregnancies often resulting from rape and violence. Would be better to help them with their IT so their records are more secure.
Bonia
Mar 08, 2014
This comment has been removed by a moderator.

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.