The Register® — Biting the hand that feeds IT

Feeds

Info commissioner issues guidance on database trading

Data protection obligations

By OUT-LAW.COM, 10th April 2006
  • print
  • alert

Agentless Backup is Not a Myth

The Information Commissioner’s Office (ICO) has published a guidance note advising businesses on how to comply with the Data Protection Act when buying and selling databases containing customers' confidential information.

The guidance is intended for use only when a database is sold because a business is insolvent, closing down, or being sold. In these circumstances the Data Protection Act does not prevent the sale of a database containing the details of individual customers, providing certain requirements are met.

The requirements:

  • The seller must make it clear that the buyer can only use the data for the purposes for which it was originally collected. The database should therefore only be sold to a business that will make the same or similar use of it.
  • The buyer must obtain the consent of the individuals referred to on the database if it wishes to use the data for a new purpose.
  • The buyer should tell the individuals referred to on the database about the change of ownership.
  • The buyer can only use the database for unsolicited marketing if the individuals referred to in it have agreed to receive such marketing, or receipt of such marketing is "likely to be within their reasonable expectations".
  • Where this is the case the buyer can only market products and services similar to those that have been advertised through the database before.
  • The buyer must delete any unnecessary personal information held on the database.

The guidance does not cover the buying and selling of confidential information in other circumstances, where consent will usually be required.

"It is important that businesses buying or selling customer databases are aware of their data protection obligations," ICO senior guidance and promotion manager Dave Evans said. "This good practice note will help businesses understand what they need to do to ensure that personal information on the databases is sufficiently protected."

See: the guidance note (2 page/34KB PDF)

Copyright © 2006, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

Customer Success Testimonial: Recovery is Everything

Send Corrections

More from The Register

breaking news
BBC-featured call centre slapped with hefty fine for unwanted calls
PPI pests: Swansea-based firm stung for £225k by ICO
75
Microsoft to open Windows Stores inside 600 Best Buy locations
Product showcases 'must be seen to be believed'
53
breaking news
Online music world on iRadio: Apple, imagine our concern
*Sarcastic face*
55
What did the Lehman Brothers implosion look like to a techie?
Insider tells all about the Gnab Gib at Lehmans
34
breaking news
Hey mobile firms: About that Android thing... Did Google add a lockout clause?
EC probes for details of deals
80
breaking news
The only Waze is Google: Ad giant tipped to gobble map app 'for $1.3bn'
Pac-Man-satnav-ish upstart in bidding war with Apple, Facebook
16
breaking news
1-in-10 e-tomes 'are self-published'... most are 'rubbish' says book ed
Publishing man scoffs at go-it-alone writers, ursines still fouling in forests
50
breaking news
Vodafone puts in multi-billion euro bid for German cable giant
Achtung! Jetzt kommt ein Vodamaschine...
5
Facebook RSS reader said to uncloak June 20
Secret event scooped by Scottish developer?
11
breaking news
O2 averts strike action over mass Capita outsourcing deal
Details of new agreement not yet released
5