ICO prosecutes company employees for unlawfully accessing client data

A former employee of Lex Autolease Ltd has been prosecuted and fined under section 55 of the Data Protection Act 1998. The employee illegally accessed personal data records of 551 customers of the Company which related to road traffic accidents. The employee accessed the records on his employer's computer and then emailed them to his private email address, which he then sold to a third party as personal leads.

Section 55 covers the unlawful obtaining, disclosing or procuring of personal data, which is a criminal offence. The ICO has warned that employees should “be aware that documents containing personal data they have produced or worked on belong to their employer and are not theirs to take with them when they leave.”

Currently the offence is punishable by way of a fine only, but the ICO continues to call for more effective deterrent sentences, including the threat of prison, to be available to the courts to stop the unlawful use of personal information.

The employee pleaded guilty to two charges under section 55 of the DPA at Manchester Magistrates' Court. He was fined £500 and ordered to pay prosecution costs of £364 and a £25 victim surcharge.

Employers should notify the ICO if they are concerned that an individual is misusing personal data, especially if those individuals have access to customer data or are moving to competitors. Informing the ICO will assist in the company avoiding any criticism for covering up or not taking proper action to remedy a data breach.

It is important that employees who have access to commercially sensitive information are employed on strict contractual terms. Such terms should include express confidentiality provisions applying during and after termination of employment and obligations to return all company property and information when leaving the company.

This case demonstrates that the consequences of an employee taking any confidential or customer information can be a criminal offence, in addition to any other consequences arising from a breach of their employment obligations. Whilst the threat of a criminal sentence may be a deterrent, employers should also have in place appropriate security measures supported by policies, procedures and well-trained staff in order to minimise the risk of personal data being compromised. These protections should not only seek to prevent confidential information being stolen in the first place, but also from being used subsequently.

CONTACT CHRIS

If you would like more information or advice relating to this article or an Employment law matter, please do not hesitate to contact Chris Cook on 01727 798098.

© SA LAW 2023

Every care is taken in the preparation of our articles. However, no responsibility can be accepted to any person who acts on the basis of information contained in them alone. You are recommended to obtain specific advice in respect of individual cases.

Read the latest Employment Views & Insights
They seek to understand their clients and advise accordingly to achieve the outcomes that they require for their business needs.
Chambers and Partners
SA Law Employment Laptop
Views & Insights
What Impact Will the Recent Judgement for Deliveroo Riders Have on Employers and Employees?

After the Supreme Court ruled Deliveroo riders as self-employed, Beth Leng was asked to comment on the implications the decision will have on employers/employees…

Read More
Stained glass window Employment SA Law
Views & Insights
Improved Protection From Sexual Harassment for Employees

The Worker Protection (Amendment of Equality Act 2010) Bill has received Royal Assent.

Read More
SA Law Employment Laptop
Views & Insights
What Must Nokia do to Carry out Their Redundancies Legally?

Nokia recently announced that on the back of disappointing financial results they will be cutting up to 14,000 jobs worldwide by the end of 2026 in the…

Read More
Stained glass window Employment SA Law
Views & Insights
'Data Bridge’ for UK-US data transfers launched

What does the UK-US Data Bridge mean for UK businesses?

Read More
Stained glass window Employment SA Law
Views & Insights
Lynskey v Direct Line: £65k Damages Awarded for Failure to Make Reasonable Adjustments for Menopausal Employee

The recently published judgment in Lynskey v Direct Line Insurance Services Ltd [2022] highlights the risks involved in putting a disabled employee through…

Read More
As there is so much expertise on offer from SA Law they can provide a legal expert on all areas so that it can be handled under one roof.
Legal 500
SA Law Employment Laptop
Views & Insights
AECOM Ltd v Mallon: EAT Emphasises Discrimination Risks in Recruitment Process

The Employment Appeal Tribunal (EAT) in AECOM Ltd v Mallon [2023] has upheld the employment tribunal's decision, affirming that an employer had an obligation…

Read More
SA Law Employment Laptop
Views & Insights
What Next for Wilko Employees?

With their employer in administration, Wilko job holders could be facing a range of possible outcomes.

Read More
Stained glass window Employment SA Law
Views & Insights
The Great Unretirement and How Your Business Can Benefit

Why are retirees returning to work and what does it mean for you as an employer?

Read More
SA Law Employment Laptop
Views & Insights
Will UK SME’s be Impacted by EU Gig Economy Law Reforms?

After it was recently announced that a new law will be created to help millions of gig workers gain the status and rights of an employee, Gita Patel was…

Read More
They are knowledgeable, with a commercial mindset, but also down to earth and friendly so it is easy to be very honest with them.
Chambers and Partners