The incident happened five weeks ago, and HMRC has only just warned that the individuals could be at risk.
"We very much regret the loss of some customer information, which went missing after it had been collected from us by our external courier, but before it had been delivered," said HMRC in a statement.
"We take the security of customer information very seriously and have notified the financial institutions concerned.
"We have also put in place precautionary measures to check our customer records for any fraudulent activity, and are taking steps to minimise the risks of a similar incident happening in the future."
For security reasons HMRC has refused to say whether the disk was encrypted.
"Standard Life immediately took all necessary security steps to protect those customers affected," said Yvonne Savage, PR manager for Standard Life Assurance Ltd.
"This included working with HMRC to contact customers to advise them of what had happened and suggest what additional security measures they should take to protect themselves.
"All customers who could potentially be affected will, by now, have received a letter from HMRC."
HMRC's data security record is not good at the moment. Last month it admitted losing a laptop containing sensitive banking customer data from the boot of a car.
.png&h=140&w=231&c=1&s=0)
.png&w=120&c=1&s=0)
EDUtech AU
.png&w=120&c=1&s=0)
Security Exhibition & Conference 2025
Integrate Expo 2025
Digital As Usual Cybersecurity Roadshow: Brisbane edition
iTnews Benchmark Security Awards 2025
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
