Context
A motor industry employee has been sentenced to eight months’ custody, suspended for two years, in a prosecution brought by the Information Commissioner’s Office (ICO).
Key points to note
- The employee whilst working for RAC, transferred personal data to an accident claims management firm without authorisation.
- The employee compiled lists of road traffic accident data including partial names, mobile phone numbers and registration numbers, despite having no permission.
- Evidence was found that the data was used to make nuisance calls.
- A data leakage scan of outlook was carried out by the employer where it was found the employee had complied unauthorised lists of data.
- Throughout the investigation the ICO received full support from the Insurance Fraud Bureau and affected insurance companies.