When to come clean about breaches

Should firms be bound by law when it comes to coming clean about data break-ins?

Written by IT Week staff

IT Week, 09 Jul 2007

Security experts have once again called for the UK to introduce a US-style
data breach notification law. The argument in favour is pretty compelling:
it will force firms to take their data protection more seriously and
improve security efforts.

With the EU now investigating the possibility of legislation along these
lines, and the Information Commissioner’s Office offering support for the
idea, the introduction of breach notification rules in the UK looks more
likely than ever. But there need to be clear guidelines covering when a
breach should be made public.data

Advertisement

Reporting of every breach, no matter how minor, could do more harm than
good, leading first to public hysteria and then to apathy. But when the
risk is significant, firms should be forced to disclose. The problem will
be in deciding what constitutes a significant breach.

Tags:

Comments

Have your say on this article

White papers

Related jobs

More Accounting jobs

Most read

Most commented

Special Reports

Latest

Spotlight

Stuart Bridges, Hiscox

Stuart Bridges: FD of Hiscox

Dull is the new black in these straightened times –...

Top 30 Accounting Networks and Associations 2008

The race to become the biggest firm on the planet...

Barack Obama Accountancy Age cover October 2008

Obama: asset or liability?

What an Obama presidency could mean for you

Find your next job

Find your next job
Salary Checker

Job of the week

More finance jobs

Newsletters

Sign up here for the very latest news delivered to your inbox. Choose from the following options:

Your next job

Have your say

THE BIG QUESTION: TAX CUTS
Will proposed tax cuts help to stimulate the economy?
Yes
No

Advertisement

Search white papers

Search white papers

Advertisement