Comments on: Lessons from Laptop Loss – the Bank of Ireland case and Mandatory Reporting of Data Loss

By: Digital Rights Ireland » Another day, another laptop loss

Digital Rights Ireland » Another day, another laptop loss — Wed, 17 Jun 2009 22:11:26 +0000

[...] been banging on about this for a while, but it’s worth repeating that in light of these fiascos, a law to warn you that your data has been stolen is long [...]

By: UK Insurance

UK Insurance — Wed, 18 Feb 2009 23:24:03 +0000

You raise some interesting points in this data loss article. I agree with your premise that data controllers should be obligated to inform customers if personal, identify able data has been compromised. I do think that larger institutions have now tightened up their processes in terms of laptops to include mandatory encryption and the disabling of external drives used to remove sensitive data from them. You point however around a change in the law to compel companies to inform the customer I note continues to be languishing.

By: Tony

Tony — Wed, 13 Aug 2008 14:15:59 +0000

I find it’s best to stick printed personal info in the composter,if you have one, Once it’s been shredded.
At least you’re getting some further use out of it and you know it’s been fully disposed of.

By: Digital Rights Ireland » Irish Times calls for data breach disclosure law

Digital Rights Ireland » Irish Times calls for data breach disclosure law — Wed, 13 Aug 2008 10:15:31 +0000

[...] editorial in today’s Irish Times has joined the calls (by ourselves and others) for laws which will ensure that Irish citizens are warned when their personal [...]

By: Digital Rights Ireland » Even more lessons from laptop loss

Digital Rights Ireland » Even more lessons from laptop loss — Mon, 11 Aug 2008 15:25:49 +0000

[...] written before about laptops going missing containing confidential personal information. Then it was 31,000 Bank of [...]

By: Jenette Mitchell

Jenette Mitchell — Sat, 26 Jul 2008 20:12:09 +0000

There are many ways that people can steal our identity. One, many people don’t own a shredder. Use it. And second, be carefull about who and where you place your information.

By: Neil

Neil — Fri, 09 May 2008 19:21:36 +0000

great post mate, something like this can only happen in Ireland

By: identity theft and financial fraud

identity theft and financial fraud — Fri, 02 May 2008 18:53:08 +0000

[...] June and October 2007. According to the Independent, the laptops ???were being used by staff workinghttp://www.digitalrights.ie/2008/04/23/lessons-from-laptop-loss-the-bank-of-ireland-case-and-mandato…Identity thieves sharpen their act The New Zealand HeraldThe people tasked with keeping our online [...]

By: Administrator

Administrator — Thu, 24 Apr 2008 09:36:48 +0000

Good point Justin. The IBTS laptop theft was handled much better in comparison.

By: Justin Mason

Justin Mason — Thu, 24 Apr 2008 08:39:52 +0000

Great article, and agreed!

An additional point:
as I noted on my taint.org post, it appears that the bank didn’t issue this information to the public. Instead, the Data Protection Commissioner did, once they were informed of the breach — leaving the bank apparently entirely unprepared for the PR fall-out.