The Information Commissioner Richard Thomas has called for greater use of the tougher penalties possible for those who breach data protection laws.
Thomas told delegates at the Infosecurity Europe that although criminal sentences to punish those who engage in the illegal trading of information have been introduced to the statute books, their implementation has frustratingly been delayed. "I'm still seeking serious deterrent to those who engage in this illegal market," he added.
He acknowledged that overall data protection awareness is improving, although public sector attitudes are still "worrying".
"The emphasis should be on accountability. Security is not just a matter for IT experts – the buck stops at the top and that has to be with the permanent secretaries," he said.
He branded the ICO's current powers "pathetic" and welcomed the forthcoming spot-check powers of organisations recently granted by the Prime Minister. Thomas added that a "modest increase in budget" for the ICO on top of the current annual sum of £10.5 million is also necessary.
He argued that although criminal sentences have been introduced to the statute books to punish those who illegally engage in the trading of information, their implementation has frustratingly been delayed. "I'm still seeking serious deterrent to those who engage in this illegal market," he added.
Lord Erroll, a member of the House of Lords science and technology select committee agreed that strong deterrents need to be introduced to "demotivate the next generation" from turning to online crime.
He added that public sector employees must also be carefully monitored to minimise the insider threat. "There are one or two rotten apples and we need the power to root them out," he argued. "Most of them are underpaid or under pressure and we need to make sure they aren't corrupted – that's why we need these [spot check] powers for the ICO soon.
Data minimisation was also held up as an important discipline which firms have been neglecting up until now. Thomas questioned the logic of allowing the details of 600,000 people to be stored unencrypted on a Ministry of Defence laptop for so long after they were obtained.
The idea of all-encompassing electronic ID schemes was setting off alarm bells as far back as 1970 21 Apr 2008
Self-appointed defenders of privacy should lay off Phorm and save their ire for the government 31 Mar 2008
ID schemes that fail to deliver real benefits in a way that users find convenient are unlikely to prosper 11 Apr 2008
Latest Symantec threat report finds a big increase in site specific attacks 08 Apr 2008
The Information Commissioner's Office has some strong advice for firms making data breaches 01 Apr 2008
Act amendments could mean jail terms for losing or trading in data 08 May 2008
Increasing sensitivity about corporate repuations is spurring actions on leaks 25 Apr 2008
Lib-Dem's compromise gets data protection breaches on to the statute books 09 May 2008
Intelligent Energy ramps up funding for R&D and partnerships 04 Jul 2008
Focus on energy savings through fuel efficiency for homes and public and commercial buildings 04 Jul 2008
ActionAid accuses G8 of driving more people into poverty by pursing biofuels and cutting agri-aid 04 Jul 2008
More news
Businesses' new found focus on the environment may be welcome, but according to Conrad MacKerron, it is taking attention away from workers' rights issues – and the credibility of the entire green business movement could be at risk 03 Jul 2008
It may be a year old, but as Dell's Jonathan Perry explains, firms looking to get rid of their old IT kit still need to pay attention to the WEEE directive 02 Jul 2008
Telling customers about your environmental targets is all well and good but, as Paul Thomas argues, they are meaningless if you do not know how they are to be achieved 01 Jul 2008 More in-depth
Post your comment
Send an email to the Business Green editor at feedback@businessgreen.com
