Govt. Rapped Over Data Protection
November 15, 2007 | by Christopher Nickson
A British visa site left data open to intruders, an investigation finds.
The Information Commissioner has taken the British government to task over breaching its own data protection laws. According to a report, the UKVisas site, which is run jointly by the Foreign Office and the Home Office, but which was outsourced to an Indian company, VFS, didn’t make data from visa applicants secure.
A Channel 4 News report in May forced the parties to admit the breach, which affected some 50,000 visa applicants to the British High Commission in India.. However, it transpired that VFS had been told of the problem as early as December 2005, according to the Guardian.
“Sound security needs to be woven into the business and cannot be simply bolted on as an extra," said the Information Commissioner’s report. "The earlier contracts paid insufficient attention to the requirements of the Data Protection Act and to basic IT security."
As a result of the investigation, the Foreign Office is reviewing its operations and has ended its contract with VFS, which also operated the UKVisas sites in Nigeria and Russia.
Post Your Comment...Comments
Comment on this article
Please keep your comments relevant to this article. Email addresses are not displayed, they are only required to verify you are human.
When you submit your comment, an email will be sent to your email address with a confirmation link. Once you have clicked on that confirmation link your comment will be posted.
HTML is not allowed.
RSS Feed
Be the first to comment on the article!