Feeds

Information Commissioner calls for more money and more powers

And questions use of ID cards

Remote control for virtualized desktops

Giving evidence to the House of Commons Justice Committee hearing on the protection of private data, Information Commissioner Richard Thomas called for changes in the law and a rethink on government data-sharing between departments.

During more than an hour of evidence Thomas said his budget was insufficient and his powers too weak. The ICO total budget is £10m compared to £890m for Health and Safety or £143m for the Food Standards agency. The £10m comes from registration fees from data controllers - those deemed by the law to be liable not from the government.

He said the government's "vision" on data-sharing between government departments looked more at the benefits of such a policy, rather than addressing the inherent risks.

Thomas said: "There is excessive faith in technology perhaps without addressing the risks that go with collecting that information - that vision looks a little dated now."

On the ICO's powers, Thomas said he was asking for a new criminal offence to be created.

He also suggested that annual financial reports could include a statement that data security policies had been followed and would be signed off by chief executives or heads of government departments.

Thomas, who has had his job for five years, said: "We've been dissatisfied for some time with our powers. We can get a search warrant but that is the nuclear option - otherwise we need the organisation's consent and that seems bizarre. Most data regulators internationally have the right to inspect and most other UK regulators have that right."

Thomas explained that the ICO has the right to inspect international organisations, but not UK organisations. He said he welcomed the prime minister's instructions to departments to allow inspections, but wanted that backed up by legislation. He said: "It's an anomaly that doesn't make sense and reflects that data protection has not been taken seriously by successive governments."

The Information Commissioner also wants the power to require organisations to commission independent reviews of specific practices.

Asked about the ID card project, Thomas said it was difficult to comment in detail because the primary purpose of the cards was still not clear. ®

Secure remote control for conventional and virtual desktops

More from The Register

next story
Musicians sue UK.gov over 'zero pay' copyright fix
Everyone else in Europe compensates us - why can't you?
I'll be back (and forward): Hollywood's time travel tribulations
Quick, call the Time Cops to sort out this paradox!
Megaupload overlord Kim Dotcom: The US HAS RADICALISED ME!
Now my lawyers have bailed 'cos I'm 'OFFICIALLY' BROKE
MI6 oversight report on Lee Rigby murder: US web giants offer 'safe haven for TERRORISM'
PM urged to 'prioritise issue' after Facebook hindsight find
BT said to have pulled patent-infringing boxes from DSL network
Take your license demand and stick it in your ASSIA
Right to be forgotten should apply to Google.com too: EU
And hey - no need to tell the website you've de-listed. That'll make it easier ...
prev story

Whitepapers

Driving business with continuous operational intelligence
Introducing an innovative approach offered by ExtraHop for producing continuous operational intelligence.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Reducing the cost and complexity of web vulnerability management
How using vulnerability assessments to identify exploitable weaknesses and take corrective action can reduce the risk of hackers finding your site and attacking it.