As the Information Commission Office’s deputy, David Smith, recently noted, (http://tinyurl.com/yervonr) a poor understanding of the Data Protection Act combined with a lack of communication and training on the subject of security remain key issues in recorded corporate data breaches.