Encryption for personal information security

The Information Commissioner’s Office has an article discussing ‘Why encryption is important to data security‘. “Storing any personal information is inherently risky” but may be necessary to provide a proper service. Apparently a common misconception is that just requiring users to login to a device or service, with a username and password, provides an equivalent level of protection to encryption.

A useful starting point if you need to understand this issue.