Who’s getting it wrong?
A former company director has been found guilty of illegally obtaining people’s personal data and selling it to solicitors chasing personal injury claims. He has been fined and issued with a confiscation order under the Proceeds of Crime Act 2002. He was also disqualified from being a company director for five years. The exact figure, which he is believed to have benefited from during his illegal activities, is £1,434,679.60 however due to a lack of assets, the Court proceeded by making a £1 nominal order. His financial circumstances will be regularly reviewed, and should they improve, the amount of the confiscation order can be increased. Read more here.
The ICO has searched two addresses in Liverpool, as part of an ongoing investigation into the acquisition and sale of illegally obtained personal data. The searched business is suspected of carrying out high volumes of data farming activity, known as blagging or vishing, to illegally obtain the personal data of motor accident victims to sell on to solicitors for personal injury claims.
What is Vishing?
Vishing is the act of using the telephone in an attempt to obtain private, personal and financial information within what seems like a normal conversation. Vishing calls to the insurance industry are frequently made by marketing firms or claims management companies in order to obtain information from insurers to enable referrals to law firms for personal injury claims to be initiated. Often callers pose as policy holders, claimants or other companies in a position of trust.
Last week the US Justice Department announced that former Equifax CIO Jun Ying has been sentenced to four months in prison for insider trading. He pled guilty earlier this year for selling his stock in the company prior to the announcement that it had been hit with a massive data breach in 2017. Read more here.
Don’t miss another news roundup, subscribe to our mailing list and receive a monthly email with essential data protection news and insights. Subscribe here.