‘Human error’ led to email data breach

About 1,300 parishioners are understood to have been affected.

Mrs Martins said the parish took ‘timely and appropriate measures in response to the breach’ but warned that the case highlights how easy a data breach can occur.

‘We have now agreed, with the parish, on a number of recommendations to improve procedural controls in this area of data processing,’ she said in a statement.

‘This includes a review of practices connected to all email communication with parishioners, as well as further training of staff and provision of instruction and guidance on maintaining security of individual email addresses. We can confirm, upon completion of our enquiries, that we have determined this incident as a case of individual human error in failing to prevent the disclosure of group email addresses of other recipients.’

Mrs Martins said following the breach the parish made contact with the Information Commissioner’s Office ‘immediately’ and have been fully cooperative since.

‘This incident has been recorded on our systems as a self-reported data breach and will remain on file referenced to the data processing activities of the data controller. It does serve to highlight the risk all organisations face when handling personal data and reinforces the importance of tight policies and procedures as well as staff training and awareness,’ she added.

– Advertisement –
– Advertisement –