In May 2010, the IPS office responsible for processing applications lost 21 applications, which included personal information about the applicants and their countersignatories, ICO said in a release.
IPS subsequently informed the individuals affected as well as the ICO about the lost information. The service stressed that it was unaware of any damage caused by the data loss, and ICO concurred.
“A passport is an important identification document and it is clearly of concern that information relating to renewal applications has been lost. However, there is no evidence to suggest that the applications have fallen into the wrong hands and we are pleased that the Identity and Passport Service is taking steps to stop this happening again”, said Mick Gorrill, ICO’s head of enforcement.
In a Data Protection Act undertaking, IPS has agreed to put in place data protection measures, including ensuring that staff are aware of policies for the storage and use of personal data and IT security and carrying out regular inspections and audits of security methods used in processing personal information.