The South London Healthcare NHS trust mislaid two drives containing patient data. The data was saved to the drives without encryption, a breach of the organisation’s data protection principles. A junior doctor was found to have taken ward lists containing printed medical data on 122 patients out of the hospital while a separate department failed to correctly secure files of genito-urinary outpatients. The likelihood is that the drives were not accessed during the time they were lost, the Information Commissioner said. The trust was ‘named and shamed’ for the loss of a similarly unencrypted USB stick containing 800 patients in 2010.”]