Alexander J. Martin reports that the Home Office had 33 data breaches during the last financial year, but did not report any of them to the Information Commissioner’s Office (ICO). The incidents were disclosed in the department’s annual report and accounts 2014-15 (PDF).
There’s nothing illegal about the failure to notify the ICO, however.
The number of incidents has increased by some magnitude from the previous report (PDF), when only five breaches were recorded that were not passed on to the ICO.
Additionally, three unauthorised disclosures were reported in 2013-14 to the ICO, including one in which the Home Office accidentally published the personal details of 1,598 migrants.
Read more on The Register.