ICO Stats Show Most Common Security Incidents

Published on: 15th October 2018
By PYXI GDPR Team


Some of the most frequently reported data security incidents according to the ICO are those relating to misuse of email.

The chart below shows the elementary mistakes that have been reported between July 2016 and March 2018. This is the tip of the iceberg however, and the growth in incidents shown can be attributed to the easier reporting mechanisms that are in place since the implementation of GDPR, according to the ICO.

ICO Stats on the Most Common Data Security Incidents

Ensuring you and your staff have a clear understanding of your email systems, online and on premise, can avoid these mistakes. BCC hides the addresses of the recipients from all recipients, and is therefore a "safe" way to distribute a bulk email message to a group of people without compromising the data privacy of the recipients.

Using CC or the To field to send to multiple recipients is fine, so long as all recipients are aware that their details will be shared with the whole group. Obviously this is necessary when seeking to engage in a group discussion about a project or issue via email, but consent should not be assumed.

Including the details of an individual who hasn't given consent in an open list is a data breach and not only creates unease and bad feelings towards the sender, but also may result in the breach being reported to the ICO.

Take time to think before pressing "Send" and check that your recipients' data is properly protected.

PYXI GDPR Team: 15th Oct 2018 09:53:00