IT Business

Information Commissioner warns on risk of 'tick box' approach to privacy compliance

The EU does not fully address the globalised nature of personal data transfer, the ICO says

By Anh Nguyen | Computerworld UK | Published 15:23, 26 January 12

Although the Information Commisioner's Office (ICO) has welcomed some of the changes to the EU data protection laws, it has warned that some of the proposals may be too prescriptive.

The new EU data protection laws revealed by the European Commission yesterday proposed changes to the data protection laws that included requiring all companies larger than SME size to appoint a data protection officer.

Also in this channel

Thousands of tenants’ unencrypted personal data and bank details left in pubLewisham Homes and Wandle Housing Association breach Data Protection Act >>
Information Commissioner calls for stonger, 'modern' data protection lawReiterates calls for jail sentences for worst offenders >>
EU data protection regulation and cookie law - Are you ready?Big changes are coming with the European Union's E-Privacy Directive >>
No more excuses for sloppy data securityShape up security practices or face harsh penalties from ICO >>

Virtualisation, Big Data and BYOD

Check out our Business IT Hub for opinions and briefings. Read more

"The [Information] Commissioner believes that in a number of areas the proposal is unnecessarily and unhelpfully over-prescriptive. This poses challenges for its practical application and risks developing a 'tick box' approach to data protection compliance," the ICO said in a statement.

The proposals that the ICO welcomed included the introduction of the individual's right to move their data from one provider to another, and the mandatory requirement for organisations to notify authorities and affected citizens of a data breach.

It is not surprising that the ICO also welcomed the EC's proposals for a strengthening of the powers of data protection authorities.

However, the ICO said that the EC failed to fully recognise the reality of international transfer of personal data. It believed that "further thought" was required on extending the scope of data protection obligations to any processing that is directed at people in the EU, as it did not provide a clear indication of how the regulations would be enforced outside Europe.

The ICO is also concerned about the EC's separate proposal for a new directive regarding the processing of personal data by law enforcement authorities.

"He [the Information Commissioner] is concerned that in an area where the processing of personal data can have a particularly adverse impact on individuals, the Commission's proposals are much less ambitious," the ICO said.

"He believes that a high level of data protection that, as with the current UK data protection act, is equally applicable across all sectors is required and hopes that these provisions will be strengthened as negotiations progress."

Slideshows: Google London Campus - Inside the incubator for tech startups

Also in slideshows :

Access Computerworld on your mobile

Get the latest news & updates from Computerworld UK on the move. Find out more

Windows 8

Check out our latest articles on Microsoft's next-generation operating system.

Accelerate Your IT Efficiency

View the latest capacity management resources including whitepapers, videos and news.

Latest Slideshows

Click here to view all our slideshows.

Government launches GrowthAccelerator for entrepreneurs

New £200 million scheme to help grow UK start-ups

Nasdaq's Facebook glitch came from race conditions

Nasdaq may pay out as much as $13 million due to a hard-to-find software bug

UK Facebook hacker jailed for 8 months

IBM Watson mastermind says future computers will be constant learners

Mobile network 3 calls on government to lower Europe data roaming charges

Blogs

IT - Helping the business deliver marketing through efficient customer analytics, at scale

How can the CIO deliver analytics to help marketing drive sales?read more »

Ian Watmore's departure - a personal view

Ian Watmore, who leaves the civil service next month, has his critics, David Moss among them. For me Watmore's time in the civil service has been marked by openness, honesty and a lack of ego. Many times he has been before Parliamentary...read more »

Governing business demand

Data management is essential in extracting maximum business valueread more »

Visualise value and then industrialise it

I was speaking to a COO the other day about the drive to deliver BI projects in short timescales. "That’s fine," he said. "But I’ve never known IT to deliver a project in six weeks."This underlined to me one of...read more »

more blogs ..

Cumbrians lose broadband after public subsidy cut

Infrastructure >>

Burberry points to benefits of tech in strong annual results

Applications >>

Cheap tablets sees Lenovo shipments grow in China

IT Business >>

EU data protection regulation and cookie law - Are you ready?

Security >>

De Vere hotels consolidate online brands through private cloud

Cloud Computing >>

Windows 8 touchscreen devices to be priced higher, Dell says

Operating Systems >>

Slideshows
White Papers
Videos
Newsletters

Login

Please login to ComputerworldUK.com

Forgot password?

Not a member yet?

Register for a Computerworld UK Account and enjoy unlimited access to our extensive white paper library and exclusive Enterprise multi-user software trials. Account members can also comment on articles and access best practices guides.
Register

HP Business Answers

Join the discussion today

The HP Business Answers group is a vibrant community of small and medium sized business owners and employees. HP provides independent and expert advice in fields such as design, branding, taxation, technology, marketing or manufacturing so join today to network with over 6500 like-minded professionals.