ICO Warns Toshiba Over Data Breach

Toshiba Information Systems has been given a slap on the wrist by the Information Commissioner's Office (ICO), following a data spillage.

This happened during an on-line competition that Toshiba organised last year. Back in September 2011, a concerned member of the public contacted the ICO and informed the body that some data pertaining to those registered for the competition was accessible.

In fact, the personal details of 20 entrants were compromised in a security flaw on the site. Those details included names, addresses and dates of birth, along with other contact information.

The ICO investigated and found that Toshiba's security measures weren't thorough enough, and hence, didn't detect the vulnerability - from a mistake, made by a third-party web designer.

A fine hasn't been levied, but Toshiba has signed an undertaking to ensure this doesn't happen again.

Stephen Eckersley, the ICO's Head of Enforcement, said: "It is vital that, as ever-increasing amounts of our personal information are collected online, companies have the necessary safeguards in place to keep this information secure."

"We are pleased that Toshiba Information Systems (UK) have committed to ensuring that any changes to applications on their website are thoroughly tested by both the developer and themselves, in order to keep the personal information they are collecting secure. We would urge other UK organisations with interactive websites to make sure they have suitable checks in place before collecting peoples' details online."