Hundreds of people are being contacted by police after raw data - including personal information - taken from crime reports was accidentally released in a breach.
Norfolk and Suffolk forces have confirmed responses to Freedom of Information (FOI) requests for statistics resulted in information on a specific police system being sent out. A total of 1,230 people have been affected. The data included personal identifiable information on victims, witnesses, and suspects, as well as descriptions of offences, such domestic incidents, sexual offences, assaults, thefts and hate crime.
The FOI requests - which give general right of access to all types of recorded information held by most UK public authorities - were issued between April 2021 and March 2022. The constabularies involved have clarified the raw data was hidden from anyone opening the files but should not have been included. They added, a full and thorough analysis into the data impacted has now been completed.
The process has now started into contacting individuals who need to be notified about any impact on their personal data. This will be done via letter, phone, and in some cases, face to face depending on what information was impacted and what support is required. It is thought that process will be completed by the end of next month. Victims of the breach will be told what personal data specific to them has been impacted and details of who they can contact for support.
T/Assistant Chief Constable of Suffolk Police, Eamonn Bridger, who led the investigation on behalf of both forces, said: “We would like to apologise that this incident occurred, and we sincerely regret any concern that it may have caused the people of Norfolk and Suffolk. I would like to reassure the public that procedures for handling FOI requests made to Norfolk and Suffolk constabularies are subject to continuous review to ensure that all data under the constabularies’ control is properly protected.”
Man in 30s dies after being stabbed in park sparking police probeStephen Bonner, Deputy Commissioner at the ICO, said: “The potential impact of a breach like this reminds us that data protection is about people. It’s too soon to say what our investigation will find, but this breach – and all breaches - highlights just how important it is to have robust measures in place to protect personal information, especially when that data is so sensitive.
“We are currently investigating this breach and a separate breach reported to us in November 2022. In the meantime, we’ll continue to support organisations to get data protection right so that people can feel confident that their information is secure. If you’re concerned about the way your information has been handled, you can get advice on what to do from our website: How to make a data protection complaint to an organisation | ICO.”
Tim Passmore, the Police and Crime Commissioner for Suffolk said: “There has been a data breach involving some Suffolk Constabulary data - this should not have happened and I apologise that it has. I have requested regular updates from the Chief Constable so I can be assured everything reasonably possible is being done to put matters right. I will also be looking at a full review of the Constabulary’s information sharing processes to guard against something like this ever happening again.”
A dedicated specialist team has been set up to handle any queries about this incident. They can be reached on 01603 276647 or email [email protected]. The Information Commissioner’s Office (ICO) has been notified and is being kept updated.