Feeds

Ex-ICO: Draft EU privacy rules will turn every citizen 'into a liar'

Current commish: Data protection reforms must target crooks, not biz

Combat fraud and increase customer satisfaction

Britain's Information Commissioner wants the force of the European Data Protection Directive to fall on rogues, not on businesses which already face mountains of paperwork. That's the message that Chris Graham will be taking to Europe when he goes there to hash out a compromise on the new European Data Protection Directive sometime before July.

Speaking at an event on Data Protection Day, Christopher Graham said that the EU's draft Data Protection Directive needed to focus on the risks that came from data management rogues, rather than chasing overburdened businesses to complete more paperwork.

"We want it defined in terms of outcomes rather than regulatory process," said Graham.

It's not going to work if we try and specify everything in the document. It should focus more on the risks and abuses and less on the average business.

Graham's predecessor in the job, Richard Thomas, was more blunt. Also speaking at the Data Protection Day event, he said that that the EU directive "should be taken back to the drawing board".

He said the EU needed to put "far less burden on the individuals" and commented that the directive would make liars of everyone:

With the current directive we are trying to turn every EU citizen into a continent of liars. We're asking people to tick boxes saying 'I have read everything' and they won't have.

The comments from the Information Commissioners - past and present - were in line with the UK ICO's latest published position on the new EU directive, published 22 January:

The current proposal is too prescriptive in terms of its administrative detail and the processes organisations will have to undertake to demonstrate accountability. This could be a particular problem for SMEs.

The preliminary response from the ICO also states that the EU's proposed "right to be forgotten" data protection reforms could lead citizens to expect a degree of protection that cannot be delivered in practice. The ICO warns that the EU must be realistic about the limited power EU data protection authorities may have over non- EU data controllers.

Underlining that point was a scathing attack on the reforms by a US diplomat at a Berlin conference last week.

John Rodgers, economic Officer in the US Foreign Service, warned taht the introduction of planned changes to EU data protection laws could herald a trans-Atlantic "trade war".

The European data protection authorities hope to produce a working document by July 2013. The first stakeholders' meeting is in May. ®

SANS - Survey on application security programs

More from The Register

next story
MtGox chief Karpelès refuses to come to US for g-men's grilling
Bitcoin baron says he needs another lawyer for FinCEN chat
Did a date calculation bug just cost hard-up Co-op Bank £110m?
And just when Brit banking org needs £400m to stay afloat
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Don't let no-hire pact suit witnesses call Steve Jobs a bullyboy, plead Apple and Google
'Irrelevant' character evidence should be excluded – lawyers
EFF: Feds plan to put 52 MILLION FACES into recognition database
System would identify faces as part of biometrics collection
Lavabit loses contempt of court appeal over protecting Snowden, customers
Judges rule complaints about government power are too little, too late
Whoever you vote for, Google gets in
Report uncovers giant octopus squid of lobbying influence
Ex-Tony Blair adviser is new top boss at UK spy-hive GCHQ
Robert Hannigan to replace Sir Iain Lobban in the autumn
Alphadex fires back at British Gas with overcharging allegation
Brit colo outfit says it paid for 347KVA, has been charged for 1940KVA
Jack the RIPA: Blighty cops ignore law, retain innocents' comms data
Prime minister: Nothing to see here, go about your business
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.