ICO logo

Privacy watchdog urges crack down on data breaches

ICO annual report outlines vast number of "unacceptable privacy breaches" during previous year

Written by Madeline Bennett

IT Week, 11 Jul 2007

The Information Commissioner’s Office (ICO) launched its annual report today, with an urgent call for chief executives to prioritise protection of their customers’ sensitive data in response to a number of “unacceptable privacy breaches” during the past year.

Speaking at the launch of the report, information commissioner Richard Thomas said that organisations in the private and public sector needed to raise their game in the data protection stakes.

“Over the last year we have seen far too many careless and inexcusable breaches of people’s personal information,” Thomas argued. “The roll call of … organisations which have admitted serious security lapses is frankly horrifying.”

The report outlined a wide range of previous incidents to highlight the scale of the privacy problem, including Liverpool City Council being fined £300 in December 2006 for failure to comply with the Data Protection Act (DPA); and an investigation into high street banks such as Natwest and Barclays Bank, which revealed that customer data was being thrown away into rubbish bins outside the banks’ premises.

“How can millions of store cards fall into the wrong hands? How can online recruitment allow applicants to see each others’ forms?” Thomas added.

Over the past year, the ICO has dealt with more than 23,000 written data protection enquiries and complaints.

The privacy watchdog is likely to use the information in the report as evidence of the need for stronger enforcement powers. Earlier this year, Thomas called for the automatic right to inspect and audit companies suspected of breaching DPA compliance. Currently this activity requires the organisation’s consent.

“The sheer weight of evidence supports the idea that the information commissioner needs stronger powers,” said Cliff Evans, ID management lead at consultancy Capgemini. “But more auditing work has an implication on resources. The ICO needs to communicate with organisations and make them more aware of their responsibilities.”

Evans added that more emphasis should be put on protecting paper documents. “Firms are applying the DPA to electronic data, but they need a reminder about the importance of controlling physical data access,” he argued. 

Tags:

reader comments

related articles

ICO consults on strategy

The UK's Information Commissioner is to review the way that it enforces data protection 05 Jul 2007

 

Tougher privacy rules on the cards

Proposals include more data protection audits and privacy seals for IT products 08 May 2007

Privacy controls need to be integrated into IT design

The Royal Academy of Engineering has reported on how engineering can of help protect personal data 28 Mar 2007

MPs make calls for stronger data controls

High profile incidents such as that at HMRC have lead to calls for stronger data legislation 03 Jan 2008

Updated: ICO confident of greater powers

Data watchdog the Information Commissioners' Office is confident of new powers 27 Nov 2007

Privacy watchdog to get new powers

Office will be given ability to spot check central government 22 Apr 2008

related whitepapers

today's top stories

Communications

WiMax: Threat or opportunity?

We examine the merits of WiMax and its benefits relative to other wireless technologies in our latest video 13 Oct 2008

The Big Picture

Learning from the credit crunch to avoid a broadband crunch

While it might be the most pressing issue de jour , the financial system isn’t the only area where government needs to... 10 Oct 2008

Management

How careerism can warp IT procurement

Many working in IT put their career interests before those of their employer when weighing up purchasing options 10 Oct 2008

Software

The definitive guide to software development

Five key trends and five best practice tips to help you improve your programming capabilities 09 Oct 2008

Management

Computing podcast - IT implications of the banking crisis, and the FSA clamps down on IT security

We discuss the effect of shotgun mergers and acquisitions on financial services IT staff, and examine the industry regulator's plan to fine directors for information security breaches 09 Oct 2008

> More news

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Jobs

Related jobs

Job of the week

> More IT vacancies

Job alerts

  • Latest jobs to your inbox
Sign up here

Find your next job


IT Salary Checker

  • Are you being paid what you are worth?
Check salary here

Advertisement

White papers

Search white papers

Top categories

VPN, Extranet and Intranet Solutions

WAN/ LAN Solutions

Network Security

Interoperability-Connectivity

Grid/ Utility Computing

Latest poll

Are you worried about your job prospects in IT over the next 12 months?

Are you worried about your job prospects in IT over the next 12 months?

Will the economic crisis affect your job prospects?

Previous poll results

> More polls

Latest audio and video articles

Remote workerVideo

WiMax: Threat or opportunity?

We examine the merits of WiMax and its benefits relative to other wireless technologies in our latest video 13 Oct 2008

programming codeVideo

The definitive guide to software development

Five key trends and five best practice tips to help you improve your programming capabilities 09 Oct 2008

> More audio and video

Latest in-depth articles

Financial Services Authority buildingAnalysis

FSA threatens executives with fines

Senior management to be held accountable for security lapses at banks 09 Oct 2008

Comment

Broadband must be a spending priority

For the economic health of the nation, the government would do better to bankroll an optical fibre rollout rather than prop up profligate banks 09 Oct 2008

> More in depth articles

Advertisement

Primary Navigation