NorthgateArinso has been banned by a pension fund client from accessing the data of 109,000 charity workers, after an unencrypted laptop containing details of several housing associations and charities was stolen from the software firm's offices in Buckinghamshire.
The software firm, which provides an administrative system to The Pensions Trust, had been using the laptop at its Buckinghamshire offices for development, training and performance testing. The laptop contained member details for six of the trust’s 39 pension schemes.
Details lost include names, dates of birth, addresses, national insurance numbers, salary details and bank account information. The laptop, protected only by a login password, contained member data for six of the trust’s 39 pension schemes.
Scottish Federation of Housing Associations, Flexible Retirement Plan, Independent Schools, Growth Plan (Series 1, 2 & 3) and Unitised Ethical Plan pension schemes were affected by the theft.
The Pensions Trust confirmed it had banned NorthgateArinso from accessing any of its members’ details, and ordered the services provider to delete all details it holds. It is understood the supplier will still provide the underlying administrative software.
The trust has informed those affected, as well as the police and the Information Commissioner.
A spokesperson at NorthgateArinso could not immediately explain how the company’s services to the Pensions Trust would be affected by the ban on access to information.
He told Computerworld UK that the company regretted the loss, and had reviewed its policies on the storage of information. But he added: “The data is normally on a mainframe. The laptop was stolen out of a locked room in a secure building.”
In a separate incident last October, a laptop was stolen from accountancy firm Deloitte, containing the pension scheme details of staff at BSkyB, Network Rail and the British Transport Police.