Security of winner information

Condition breached

Condition 5(1) of the Section 5 licence

Description

Camelot failed to ensure the security of all data used in connection with the National Lottery so as to minimise opportunities for theft, fraud or misuse as required by condition 5(1) of its licence.  This licence breach relates to specific events that occurred on 2 December 2004.  A cupboard, within a secure area, containing information about winners was not locked.  This was identified by a security guard who locked the cupboard and reported the incident.  Camelot reported the incident to the Commission.

Background

Information about winners is held in secure areas within Camelot’s premises.  Not all of the staff who had access to this area were authorised to have access to winner information though all personnel who are able to enter secure areas unaccompanied are vetted by the Commission.

Regulatory action

A licence breach was recorded in December 2004.  The Commission received a full report of the incident from Camelot, including details of action taken to avoid a reoccurrence.

Outcome

Camelot has amended its procedures.