Left Holding the Baby (but not the CDs)

Nov. 21st, 2007 01:00 pm
major_clanger: Clangers (Royal Mail stamp) (Legal Clanger)
[personal profile] major_clanger
More from The Guardian on the Great Missing CDs Fiasco:

"A spokesperson for HMRC said: "This individual should not have been involved. It was none of their business. They should have forwarded it on to someone else - another group of civil servants at a more senior level ... The individual in question had nothing to do with that team and it was completely outside their job remit."

Ooh, do any other legal types out there detect the phrase "a frolic of his own" winging its way inexorably towards this sorry mess? It would be very, very convenient for HMRC to be able to deny vicarious liability for this person's mistake, wouldn't it?
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Date: 2007-11-21 01:21 pm (UTC)
From: [identity profile] purplecthulhu.livejournal.com
I get the sense of someone being hung out to dry...

BUT if it was beyond their remit to do this why was the system set up to allow them to? That is a flaw in the system which whoever set it up and maintained the system, ie. HMRC, has to be liable for.

Date: 2007-11-21 02:01 pm (UTC)
andrewducker: (Default)
From: [personal profile] andrewducker
Yup. How the hell did they get access to a disk with 25 million bank accounts on it? Why weren't procedures in place to stop that? I work in a financial company and _I_ sure as hell can't just grab that data from the production tables.

Date: 2007-11-21 02:05 pm (UTC)
timill: (Default)
From: [personal profile] timill
You can't, I can't, but there are people who can. And if they get a request passed down and assume it's all authorised already, Interesting Things can happen.

Date: 2007-11-21 11:40 pm (UTC)
andrewducker: (Default)
From: [personal profile] andrewducker
Yes. It's a failure of procedures. But setting those procedures properly and making sure they get followed is a strategic issue, stemming right from the top of an organisation.

We're having a _big_ push for security at work at the moment, and all of our procedures are being looked at. At the very least, everyone is terribly aware that the data we hold is _secret_ and nobody should be seeing it without all sorts of clearance. If there isn't that kind of culture amongst the people in these departments then it's the fault of senior management.

Date: 2007-11-21 02:03 pm (UTC)
timill: (Default)
From: [personal profile] timill
Presumably the job that was run was a standard extract job that's used all the time to pull data off the mainframe for internal HMRC purposes. That, I suspect, was within this person's usual remit; what was outside that remit is, I suspect, "talking to other Government Departments", not "extracting data".

Date: 2007-11-21 02:31 pm (UTC)
ext_9215: (Default)
From: [identity profile] hfnuala.livejournal.com
If it was outside his remit how could he get the data? I can't get at people's bank account details.
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Profile

major_clanger: Clangers (Royal Mail stamp) (Default)
Simon Bradshaw

January 2022

S M T W T F S
      1
23 45678
9101112131415
16171819202122
23242526272829
3031     

Most Popular Tags

Page Summary

Style Credit

Expand Cut Tags

No cut tags
Page generated Jun. 19th, 2025 06:22 am
Powered by Dreamwidth Studios