Quarkside’s spam sleuthing helped to identify a person who is no longer employed by the respectable company. Prompt action was taken and a company wide letter has been sent to all staff reminding of them of their responsibilities under the Data Protection Act. I hope that the Information Commissioner has been informed.
The list was used to create spam. How wide this has spread, only time will tell. It was interesting that the spam led to a company that has “adopted a pioneering approach to the deployment of modern technologies such as MDM, yet couple this with a no-nonsense attitude to advice, governance and analysis.” If this is a no-nonsense attitude to governance, then their internal processes are worthy of deeper inspection. No-nonsense should not mean avoiding due diligence on sources of personal information.