UPS encrypts laptops after data breach

Firm is also updating security policies and implementing a number of other procedural changes

UPS has encrypted of all its UK laptops and smartphone devices

Parcel service UPS has encrypted of all its UK laptops and smartphone devices, following a breach of the Data Protection Act last year.

UPS has also signed an undertaking to assure the Information Commissioner’s Office that personal information will be kept securely in future.

An unencrypted password-protected laptop was stolen from one of UPS’s employees while on business abroad in October 2008.

The laptop, which was never recovered, contained the payroll data of approximately 9,150 UK-based UPS employees, including personal, salary and bank details.

All UK employees were notified by UPS of the theft and precautionary measures were organised for them.

Mick Gorrill, assistant information commissioner, said all firms needed to take steps to encrypt laptops to ensure compliance with the Data Protection Act.

"Password protected laptops are not secure," he said. "I urge all organisations to restrict the amount of personal information that is taken off secure sites. I am pleased that UPS has encrypted its laptops and smartphones, and I urge other organisations to follow suit."

UPS is updating its security policies and is implementing a number of other procedural changes to protect personal information in the future.