Skip to main content

Departmental Security

Volume 493: debated on Wednesday 3 June 2009

To ask the Minister of State, Department for Business, Enterprise and Regulatory Reform how many breaches of security there have been at (a) Companies House and (b) the Insolvency Service in the last five years; and what procedures are invoked in each organisation when a breach of security relating to personal data is identified. (276942)

There have been no breaches of security into Companies House main building or any items stolen. However, in the last five years, three bicycles were stolen from the car park and four laptops have been stolen from private premises.

There have been no breaches of security relating to personal data in the last five years. Companies House has a documented security incident procedure in line with the requirements of HMGIA Standard No. 6 —Protecting Personal Data and Managing Information Risk and the Security Framework. Any reportable breaches are recorded in Companies House Annual Report and Accounts.

The Insolvency Service has experienced one breach of security in the last five years, namely the theft of four laptops from its Manchester office on 28 August 2008. Only one of the laptops contained personal data. The breach was reported to the police, Ministers, Cabinet Office and the Information Commissioner’s Office. A press release was also issued in relation to the incident.

The Insolvency Service follows Cabinet Office policies and procedures in dealing with notification of breaches involving personal data.