Feeds

Thomas tells CEOs told to sort out data protection

As government proved to be biggest offender

Choosing a cloud hosting partner with confidence

Information Commissioner Richard Thomas called on CEOs to take more responsibility for data security within their organisation - at the same time as he released figures showing that government is still the worst offender for losing personal data.

Since November 2007 the ICO has received 277 notifications of breaches - 80 from the private sector, 75 from the NHS, 28 from central government, 26 from local government bodies and 47 from the rest of the public sector. This compares to about 200 in the preceding 12 months.

The regulator is still investigating 30 of the most serious breaches.

Thomas accepts that the number of breaches must be well short of the real total, either because organisations are covering up losses or because they do not realise information has been lost. He warned that ever cheaper storage technology meant more risk of losses. He is doubtful that a law to force companies and government departments to notify individuals when their data has been lost.

Thomas said there were three aspects to good data protection:

  • Clear thinking and paperwork

    Getting the technology right

    Focussing on people and technology

The ICO is still waiting for new inspection powers it requested after the loss of the Child Benefit database.

The full text of the speech, to be delivered at the RSA conference, is here (pdf.).

Perhaps Thomas should swing by Whitehall on his way.

It was also revealed yesterday in a Commons written answer that seven civil servants were dismissed from the Identity and Passport Service in 2007-2008 and eight people were disciplined for breaching data protection principles. Full figures here.®

Beginner's guide to SSL certificates

More from The Register

next story
BIG FAT Lies: Porky Pies about obesity
What really shortens lives? Reading this sort of crap in the papers
Assange™ slumps back on Ecuador's sofa after detention appeal binned
Swedish court rules there's 'great risk' WikiLeaker will dodge prosecution
You think the CLOUD's insecure? It's BETTER than UK.GOV's DATA CENTRES
We don't even know where some of them ARE – Maude
prev story

Whitepapers

Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
How to determine if cloud backup is right for your servers
Two key factors, technical feasibility and TCO economics, that backup and IT operations managers should consider when assessing cloud backup.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.