A Monetary penalty of £60,000 was issued to North Somerset Council for a serious breach of the Data Protection Act where a council employee sent five emails, two of which contained highly sensitive and confidential information about a child's serious case review, to the wrong NHS employee.

An Undertaking to comply with the seventh principle of the DPA has been signed by The London Borough of Southwark, further to the inappropriate disposal personal of an iMac computer and paper records. The matter was brought to the attention of the when the afore mentioned items were found by a member of the public in a skip being used to cleanse a decommissioned and vacant property, which was part of a complex previously owned by the data controller. A substantial volume of sensitive personal data relating to around 7,200 individuals was contained on the iMac and within the paper records detailing ethnicity, medical history and criminal convictions.

An Undertaking has been signed by Central Essex Community Services after the loss of a birth book containing information about the general health of 249 mothers and their babies. The book which should have been stored in a locked filing cabinet was stored on top of the cabinet in a locked room due to no secure storage space being available. The book has never been recovered.

An Undertaking to comply with the seventh principle of the DPA has been signed by Ruth Crawford QC, further to the theft of an unencrypted laptop computer which contained the sensitive personal data of a number of individuals who were involved in cases on which the data controller was instructed to act.

An Undertaking to comply with the seventh principle of the DPA has been signed by Phoenix Nursey School, further to the loss of a backup tape and accompanying device which contained details of pupils, parents and guardians as held on the schools information management system. Consideration was given to the fact that a nominal amount of the data lost in this incident consisted of information as to the physical or mental health of the data subjects.

An Undertaking to comply with the seventh data protection principle has been signed by Oliver Letwin MP. Following the disposal of a number of documents containing personal data in public waste-bins.

A former gambling industry worker who unlawfully obtained and sold personal data relating to over 65,000 online bingo players has pleaded guilty to committing three offences under section 55 of the Data Protection Act.

Computershare, the investor services firm, has filed suit against a former
employee it charges with making off with thousands of pages of proprietary
company documents, including information on shareholder names, account
numbers and financial holdings.

The company warned that the data, which was illegally copied from the
former employee's company laptop to a USB drive, which was subsequently
lost, could put the "privacy and financial record of millions of
shareholders" at risk.

An Undertaking to comply with the seventh data protection principle has been signed by the chief executive of Rochdale Metropolitan Borough Council. This follows an incident earlier this year in which an unencrypted USB stick containing some personal data relating to thousands of local residents was lost.