Feeds

Info commissioner issues guidance on database trading

Data protection obligations

5 things you didn’t know about cloud backup

The Information Commissioner’s Office (ICO) has published a guidance note advising businesses on how to comply with the Data Protection Act when buying and selling databases containing customers' confidential information.

The guidance is intended for use only when a database is sold because a business is insolvent, closing down, or being sold. In these circumstances the Data Protection Act does not prevent the sale of a database containing the details of individual customers, providing certain requirements are met.

The requirements:

  • The seller must make it clear that the buyer can only use the data for the purposes for which it was originally collected. The database should therefore only be sold to a business that will make the same or similar use of it.
  • The buyer must obtain the consent of the individuals referred to on the database if it wishes to use the data for a new purpose.
  • The buyer should tell the individuals referred to on the database about the change of ownership.
  • The buyer can only use the database for unsolicited marketing if the individuals referred to in it have agreed to receive such marketing, or receipt of such marketing is "likely to be within their reasonable expectations".
  • Where this is the case the buyer can only market products and services similar to those that have been advertised through the database before.
  • The buyer must delete any unnecessary personal information held on the database.

The guidance does not cover the buying and selling of confidential information in other circumstances, where consent will usually be required.

"It is important that businesses buying or selling customer databases are aware of their data protection obligations," ICO senior guidance and promotion manager Dave Evans said. "This good practice note will help businesses understand what they need to do to ensure that personal information on the databases is sufficiently protected."

See: the guidance note (2 page/34KB PDF)

Copyright © 2006, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

5 things you didn’t know about cloud backup

More from The Register

next story
BBC: We're going to slip CODING into kids' TV
Pureed-carrot-in-ice cream C++ surprise
6 Obvious Reasons Why Facebook Will Ban This Article (Thank God)
Clampdown on clickbait ... and El Reg is OK with this
Twitter: La la la, we have not heard of any NUDE JLaw, Upton SELFIES
If there are any on our site it is not our fault as we are not a PUBLISHER
Facebook, Google and Instagram 'worse than drugs' says Miley Cyrus
Italian boffins agree with popette's theory that haters are the real wrecking balls
Sit tight, fanbois. Apple's '$400' wearable release slips into early 2015
Sources: time to put in plenty of clock-watching for' iWatch
Facebook to let stalkers unearth buried posts with mobe search
Prepare to HAUNT your pal's back catalogue
Ex-IBM CEO John Akers dies at 79
An era disrupted by the advent of the PC
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?