ITPRO

Printed from www.itpro.co.uk

Register to receive our regular email newsletter at http://www.itpro.co.uk/reg/register.

The newsletter contains links to our latest IT news, product reviews, features and how-to guides, plus special offers and competitions.

Skip to navigation

    Demand for tougher data breach legislation

Lost laptops and missing discs could mean legal trouble, as the media spotlight on data breaches gives weight to calls for tougher legislation - but is encouraging best practice a wiser move?

By By Ash Dosanjh, 4 Feb 2008 at 12:21

gallery

Another day, another miserable data fiasco - it seems there's no end in sight for missing laptops and lost discs.

It's one thing after another: Marks and Spencer told off by the information commissioner's office (ICO), missing discs from the Ministry of Justice and HM Revenue and Customs, and laptops lost by the Ministry of Defence are just the latest in a line of breaches which affect millions in the UK.

It's clear more will happen, but what can the government do to force industry (and itself) to take the right measures to make sure such debacles don't happen again?

There are, of course, technology and policies. Indeed, Whitehall staff were recently banned from removing unencrypted laptops containing data from their offices, but as HMRC's acting chairman Dave Hartnett has already admitted, the failure to protect data is "systemic" - leading some to say tough legislation is the only way to force organisations to keep data secure.

Legislation on the way

And such legislation might be on the way. According to the Ministry of Justice, parliament is currently considering proposals to amend the Data Protection Act.

It said: "Subject to Parliamentary approval, this will provide for terms of imprisonment in addition to existing fines for those found guilty of unlawfully obtaining or disclosing personal data."

What these new penalties may mean is that those found guilty of security breaches could face imprisonment for up to two years - currently only punishable by a £5,000 fine.

On top of these proposals, Information Commissioner Richard Thomas has also demanded new powers of inspection, allowing them to "spot-check" government departments without permission to ensure the security and protection of data.

Indeed, the Information Commissioner Richard Thomas has himself come down on the side of stronger legislation, saying in the House of Commons Justice Committee report on the Protection of Private Data said there was a "need to ensure that safeguards are achieved in practice".

Previous
1 2 3
Next

Email to a friend

Print this page

< Previous   Security : Analysis & Insight Next >

Be the first to comment on this article

You need to Login or Register to comment.

    You may also like...

 Sponsored Links

advertisement

    You may also like...

    Latest Security News

SSD

Hitachi unveils ‘industry first’ 25nm SSD

The storage giant brings single-level cell NAND flash to enterprise storage.

Read more

 

More Security News

    Latest Security Tutorials

PC on a drip (virus protection)

How to protect a group of office PCs from viruses

Safeguarding multiple office computers from malware doesn't have to be difficult or expensive, as Simon Edwards shows in our step-by-step guide.

Read more

 

More Security Tutorials

advertisement

    Most popular

    Latest Analysis & Insight Videos in Security

Cloud Security

Why security should top the cloud agenda

Play Why security should top the cloud agenda   Play

Security should always be paramount in business, but with a cloud based infrastructure it’s arguably even more important. Steve Cassidy and...

 
Sponsored Links
Advertisement