Cryptography being used, but badly

[Roland Perry]

In article <20090525161332.15773gk38tzxdaww at webmail01.purplecloud.com>, 
signup at bealoid.co.uk writes
>Is writing a password on a note and attaching it to a stick containing 
>encrypted medical information a crime?

It would seem to be a breach of the DPA (principle 7). And that's before 
we consider any laws that are special to the medical profession (and 
medical records).

"7. Appropriate technical and organisational measures shall be taken 
against unauthorised or unlawful processing of personal data and against 
accidental loss or destruction of, or damage to, personal data."
-- 
Roland Perry