Picture of Parliament
The Lords committee called for greater powers for the ICO

New scrutiny on data laws

Cross-government calls for the review of data protection procedures

Written by Tom Young

Computing, 23 Aug 2007

The UK’s information security laws have come under debate across government as the issue of data protection rises up the political agenda.

A Conservative Party policy review last week recommended the repeal of the ‘expensive bureaucracy’ surrounding the Data Protection Act (DPA).

Advertisement

But a House of Lords committee on personal internet security has called for the government to increase the powers and effectiveness of the Information Commissioner’s Office (ICO), as well as introduce a law forcing firms to reveal breaches of data security.

The Earl of Erroll, who sits on the Lords’ science and technology committee, said the issues are all related.

‘The DPA doesn’t need a lot of tweaking, but there may be a lot of meaningless red tape that has grown up around it. At the same time the ICO does need to have more power,’ he said.

Current enforcement procedures are bureaucratic. A first-time offender must sign an undertaking to comply with the DPA; only if a second offence occurs can the ICO take action.

But this is an issue the data protection watchdog is trying to address and does not necessarily require legislative changes, said Louise Townsend, senior associate at law firm Pinsent Masons.

‘The ICO fleshes out how the Act is applied. The commissioner has already been proactive trying to engender a shift away from being unduly restrictive,’ she said.

The ICO has recently replaced a set of technical rules on data sharing with principles-based guidelines in an effort to ease the cost of compliance for business.

The Tory review quoted a figure of £2.3bn for the annual cost of data protection to UK firms ­ though this figure came from a 1998 Regulatory Impact Assessment document. A 2006 Department of Constitutional Affairs report put the price at £0.67bn.

The Ministry for Justice said the mechanisms which regulate and protect use of personal information are under continuous review.

‘As and when necessary we review with the commissioner his powers and protection to ensure they meet the needs of any developing policy,’ said a spokeswoman.

UPDATE: 28th August 2007

The Conservatives have admitted an 'error' in their figures.

'The correct recurring cost figure for the Data Protection Act is £667m (BCC’s Burdens Barometer 2006) but the figure actually used, wrongly, refers to the Working Time Regulations 1999,' said a spokesman.

Comments

Have your say on this article

White papers

Related jobs

More Accounting jobs

Most read

Most commented

Special Reports

Latest

Spotlight

Andrew Higginson, Tesco Personal Finance

Profile: Andrew Higginson, CEO of Tesco Personal Finance

He’s spent more than a decade at the top of...

Top 30 Accounting Networks and Associations 2008

The race to become the biggest firm on the planet...

Barack Obama Accountancy Age cover October 2008

Obama: asset or liability?

What an Obama presidency could mean for you

Find your next job

Find your next job
Salary Checker

Job of the week

More finance jobs

Newsletters

Sign up here for the very latest news delivered to your inbox. Choose from the following options:

Your next job

Have your say

THE BIG QUESTION: TAX CUTS
Will proposed tax cuts help to stimulate the economy?
Yes
No

Advertisement

Search white papers

Search white papers

Advertisement