Businesses could be fined 10% of revenues for data protection breaches
- Reduce text size Decrease text size
- Increase text size Increase text size
- Print article Print
- Jump to comments Comment
- Share this article Share
- Email article to a friend Email
The Information Commissioner’s Office is seeking sharper teeth to enforce data protection laws
The
That penalty is the maximum punishment the Financial Services Authority can impose on companies that breach financial regulations. The ICO believes it should be able to enact the same penalty for companies that commit ‘serious and reckless breaches [of the Data Protection Act] resulting in harm to individuals’. The maximum penalty currently available to the ICO is £5,000.
The Information Commissioner, Richard Thomas, told the RSA Security conference in October that he also expects the current rule preventing him from being able to requisition suspects’ computers without their permission to be relaxed.
According to Paula Barrett, head of the data protection team at law firm Eversheds, that ICO’s call for greater powers reflects a feeling among lawmakers that businesses are not taking data laws seriously enough.
“It is in line with the general sense of wanting to protect consumers from businesses abusing their position,” she said. “There is also a concern that, with enhanced computer technology, there is a greater ability to capture data and maintain a profile about an individual. Also, people are getting fed up with unsolicited emails and junk mail.”
“We will see further regulation,” Barrett added. “Technology has moved on apace and in particular the use of the internet information gathering going on that was never conceived of before.”
Meanwhile, the ICO revealed this week that 11 government ministers, including education minister Ed Balls, have broken the Data Protection Act which was introduced by the current Labour government in 1998. The ministers failed to place themselves on a Data Protection Register while collecting personal data on their constituents.
Further reading
Consumer concern over data protection growing
Plus, over 850,000 people have lost data in a public place, survey finds
Information Commissioner gains power to fine
Government privacy watchdog granted ability to fine organisations that contravene the Data Protection Act
A data awakening
Organisations need to treat their data with much greater care. And for many that means adopting a data governance strategy
Find more stories in the Security & Continuity Briefing Room
