0370 270 6000

Beware the Data Punishment Act

20 February 2012

Three Councils have recently been handed significant fines by the Information Commissioners Office (ICO) for serious breaches of the Data Protection Act 1998.

Whilst the Information Commissioner and the Department for Communities and Local Government hoped that the ICO’s powers to use monetary penalties would need to be used “only sparingly” the total fines imposed since May 2010 exceed £1M. These latest cases highlight just how serious the ICO takes breaches in the safeguarding arena.

To prevent being caught out it is clear that robust systems need to be put in place to ensure that sensitive information is properly managed and carefully disseminated. The ICO emphasized procedures and training as being fundamental to any Data Protection system.

I wonder what the ICO would have done if the Councils had demonstrated effective systems and shown that these employees had received training on those systems, and the loss was simply a matter of bad luck.

Related opinions

Sports associations and clubs – keeping children safe from sexual abuse – Lessons learned from the Sheldon report

On 17 March 2020 a report by Clive Sheldon QC was published. He had been appointed by the FA back in December 2016 to carry out an independent review into allegations of sexual abuse by coaches and scouts working in youth football between 1970 and 2005.

View blog

The Debt Respite Scheme and its implications for creditors

The Debt Respite Scheme (Breathing Space Moratorium and Mental Health Crisis Moratorium) (England and Wales) Regulations 2020 is due to come into force on 4 May 2021. It’s a snappy title but what exactly is it?

View blog

COVID-19 child protection practice - four months in - lessons learned so far

In June 2020 the University of Birmingham published a research briefing exploring the impact of the COVID-19 pandemic on child protection practice.

View blog

Do you collect personal data from children, whether deliberately or by accident? If so you’d better read this…

If you provide goods or services online that might be of interest to children then you’re going to want to go through the ICO’s “Age Appropriate Design Code of Practice” - a code requiring minimum standards of any online service aimed (or which is likely to interest) children.

View blog

Mailing list sign up

Select which mailings you would like to receive from us.

Sign up