Midlothian Council fined over data breaches

Midlothian Council has become the first Scottish organisation to be fined by the Information Commissioner’s Office for five data breaches.

The local authority has been fined £140,000 after five incidents of disclosing personal data relating to children and their carers to the wrong recipients. All took place between January and June last year. The council reported itself to the ICO.

While apologising for the breaches, chief social work officer Colin Anderson said the mistakes were “caused by human error” and added that a number of staff have been disciplined.

One of the breaches happened when papers relating to the status of a foster carer were sent to seven healthcare professionals – none of whom had any reason to see the information.

Read the full story in this week’s Advertiser - out now.