British abortion group fined over personal data hack

Mar 08, 2014

Britain's biggest abortion provider was fined Friday by a data protection watchdog after a computer hacker obtained the details of thousands of women who had sought its help.

Convicted James Jeffery threatened to publish the names of those who sought advice from the British Pregnancy Advice Service (Bpas) charity.

The Information Commissioner's Office watchdog criticised the provider for not storing personal data securely and fined it £200,000 ($335,000, 240,000 euros) for a "serious breach" of the Data Protection Act.

The ICO said Bpas "didn't realise" that its own website was storing names, addresses, dates of birth and , how long the information was being retained for, nor that the website was not sufficiently secure.

"Ignorance is no excuse," David Smith, the ICO's deputy commissioner and director of .

"It is especially unforgivable when the organisation is handling information as sensitive as that held by the Bpas. Data controllers must take active steps to ensure that the they are responsible for is kept safe."

Jeffrey was jailed for two years and eight months in 2012 for the theft of 10,000 database records held by the charity containing women's personal details.

A member of the international computer hacking group Anonymous, Jeffrey was described by the judge in the case as a "zealot with an anti-abortion campaign".

Bpas said the hacker did not obtain medical records, and it intends to appeal against the fine.

"We accept that no hacker should have been able to steal our data but we are horrified by the scale of the fine, which does not reflect the fact that Bpas was a victim of a serious crime," said chief executive Ann Furedi.

"Bpas is a charity which spends any proceeds on the care of women who need our help.

"It is appalling that a hacker who acted on the basis of his opposition to abortion should see his actions rewarded in this way."

Explore further: Government hackers try to crack HealthCare.gov

add to favorites email to friend print save as pdf

Related Stories

UK police quiz man over abortion website attack

Mar 09, 2012

(AP) -- Police have arrested a man suspected of hacking into the website of a major British abortion provider, vandalizing it and stealing sensitive data, officials said Friday.

Sony fined in UK over PlayStation cyberattack (Update)

Jan 24, 2013

British regulators have fined Sony 250,000 pounds ($396,100) for failing to prevent a 2011 cyberattack on its PlayStation Network which put millions of users' personal information—including names, addresses, ...

Recommended for you

China blocks 'privacy' search engine DuckDuckGo

20 hours ago

China has begun blocking the privacy-protecting search engine DuckDuckGo, which avoids storing user data or tracking online activity, according to the company and security researchers.

FBI widens probe of naked celebrity photos

20 hours ago

The FBI vowed Monday to widen a probe into the massive hacking of naked celebrity photos if necessary, after new reported leaks including nude shots of Kim Kardashian.

New ZEBRA bracelet strengthens computer security

Sep 22, 2014

In a big step for securing critical information systems, such as medical records in clinical settings, Dartmouth College researchers have created a new approach to computer security that authenticates users ...

CloudFlare tackles lost SSL key risk with Keyless SSL

Sep 19, 2014

Organizations looking for and concerned about optimal security protection are the targets of a new service announced by San Francisco-based CloudFlare. The offering is called Keyless SSL. CloudFlare explained ...

When does Google hand over your data to governments?

Sep 19, 2014

Governments around the world want to know a lot about who we are and what we're doing online and they want communications companies to help them find it. We don't know a lot about when companies hand over ...

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

Hev
5 / 5 (2) Mar 08, 2014
It is not right that the BPAS should be fined, as they help and care for women who have unwanted pregnancies often resulting from rape and violence. Would be better to help them with their IT so their records are more secure.
Bonia
Mar 08, 2014
This comment has been removed by a moderator.