ICO fines: A timeline
We take a look back at what the ICO has been up to since it gained extra fining powers, which were used today for the first time.
Today the Information Commissioner's Office (ICO) issued its first fines since it was handed additional powers, with two organisations paying out a total of 160,000.
For some, the wait was been too long. Others believed it had been a good day for information commissioner Christopher Graham, as he showed the ICO had real teeth.
So where did the story of the ICO fines begin and how did we get to where we are now? We take a look at the brief history of the data protection watchdog and it's penalty powers.
A new year called for change and the ICO started off by announcing proposals for additional powers. The body said it wanted to be able to hand out 500,000 penalties for the most serious breaches of the Data Protection Act.
These powers were granted and came into force on 6 April.
The ICO explained the most serious fines would occur in cases where the data controller responsible "seriously contravened the data protection principles and the contravention was of a kind likely to cause substantial damage or substantial distress."
Lampeter Medical Practice was found in breach of the Data Protection Act when an unencrypted USB stick containing 8,000 patient details went missing but no fine was handed out.
The ICO rapped two NHS bodies, which had experienced serious data breaches.
At the time the ICO said one in four of all Data Protection Act breaches in the UK were committed by the NHS, yet no Trust had been told to pay out.
In This Article
Digital Risk Report 2020
A global view into the impact of digital transformation on risk and security managementDownload now
6 ways your business could suffer if you don’t backup Office 365
Office 365 makes it easy to lose valuable data regularly, unpredictably, unintentionally, and for goodDownload now
Get the best out of your workforce
7 steps to unleashing their true potential with robotic process automationDownload now
8 digital best practices for IT professionals
Don't leave anything to chance when going digitalDownload now