Over the same period of time the body has had some eleven meetings with the Information Commissioners Office as the result of data security 'incidents', according to MP Jane Kennedy, who is secretary to the Treasury.
In 2005 the HMRC took action against 238 members of staff, in 2006 the number dropped to 180, and last year, Kennedy admitted, 192 staff, out of a total of some 90,000 were, "disciplined or dismissed for inappropriate access to personal or sensitive data."
Kennedy added that the HMRC has introduced new, much more stringent controls over the transfer of bulk data over the same period.
Vendors were quick to point out that there were readily available technical solutions to these and other, similar problems, many of which negate the risk altogether. "You cannot force employees to stop accessing sensitive data - people are only human and mistakes are going to be made.
What organisations need is technology that makes the most of centrally managed IT policies and user-based remediation, so only employees with certain levels of authority can manipulate certain data," said Brian Spector, general manager of document management control software provider Workshare's content protection group.
> Read the full article
.png&h=140&w=231&c=1&s=0)
.png&w=100&c=1&s=0)
Private AI vs Public AI: How your organisation can securely adopt AI without compromise and excessive cost
iTnews Benchmark Security Awards 2025
Digital Leadership Day Federal
Government Cyber Security Showcase Federal
Government Innovation Showcase Federal
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
