Archive

Posts Tagged ‘ICO’

Zurich Insurance hit with $3.5m fine…

August 25, 2010 Leave a comment

David Meyer from ZDNet reports that Zurich Insurance was hit with a $3.5m fine by the Financial Services Authority (FSA) in the UK for failing to secure customer data. This comes from an incident when a data tape went missing in transit between processing centers. There was no evidence the data on the tape had been used or exposed, but the lack of process and policy was enough to cause the FSA and step in.

The FSA noted in their statement that:

As there were no proper reporting lines in place Zurich UK did not learn of the incident until a year later

An effective breach of the UK Data Protection Act according to the Information Commissioners Office (ICO).

Advertisements

European Commission requests the UK to strengthen Data Protection Regulation…

June 28, 2010 Leave a comment

This week the European Commission requested the UK to strengthen its data protection legislation to align with the EU Data Protection Directive. Claiming the UK regulations offered less protection than those required under EU rules, the UK has two months to consider the opinion and respond with measures to bring them into line.

The EU highlighted the following points:

1. The ICO cannot monitor third party country data protection rules – assessments which should come before international transfer of personal information

2. The ICO can neither perform random checks on people using or processing personal data, nor enforce penalties following the checks.

The full writeup can be found on the Europe EU Law press release page.