ICO gets new powers to address data protection negligence
Announced earlier this week by the Ministry of Justice, amends have been made to the Data Protection Act of 1988 that when passed in April 2010 will allow the ICO to impose fines of up to £500,000 on organisations found to be negligent regarding the privacy of personal data.
Justice Minister, Michael Wills, said: “We want to ensure that the Information Commissioner’s Office has the powers it needs and is able to impose robust penalties on those who commit serious breaches of data protection principles.”
To be subject to the fine there are certain criteria to be met, but the one that should make existing Data Controllers sit up and take notice is:
If the data controller knew or ought to have known that there was a risk that the contravention would occur, and that such a contravention would be of a kind likely to cause substantial damage or substantial distress, but failed to take reasonable steps to prevent the contravention.
If you’re a Data Controller responsible for your companies data security how does this announcement make you feel? If you’d like a no-obligation discussion regarding your data security and secure file transfer requirements contact Pro2col today on 0333 123 1240.