HMRC’s loss of personal data was shocking to many (Government is facing criticism over data loss, 21 November). But the vital thing now is that organisations in the public and private sectors take immediate steps to prevent this kind of loss happening again.

An important first step is to undertake an immediate data loss risk assessment. The growing number of small storage devices such as memory sticks makes it easier than ever for confidential data to leave an organisation, accidentally or intentionally.

We can also expect a substantive debate on the need for a data breach notification law in the coming weeks and months. These recent developments are likely to force the hand of policy makers to take action sooner rather than later.

John Brigden, Symantec