Feeds

UK data watchdog broke data law, says UK data watchdog

ICO probes self in 'non-trivial security incident'

Secure remote control for conventional and virtual desktops

Britain's data cops have coughed to a serious security screw-up at the Information Commissioner's Office, and concluded that the ICO - only mildly - violated the Data Protection Act that it is supposed to police.

It carried out an internal probe into what the ICO passively described as a "non-trivial security incident" that happened at some point in the last 12 months.

The regulator said:

It was investigated and treated no differently from similar incidents reported to us by others. We also conducted an internal investigation. It was concluded that the likelihood of damage or distress to any affected data subjects was low and that it did not amount to a serious breach of the Data Protection Act.

A full investigation was carried out with recommendations made and adopted. The internal investigation was also concluded.

But according to The Times, which spotted the blunder, the ICO has refused to reveal any further details about the incident.

At the time of writing The Register had not heard back from the watchdog. We were curious to know why the matter wasn't treated independently of the ICO, given that it happened at Commissioner Christopher Graham's office.

The only way to furtle more details from the data cops would be to submit a Freedom of Information request, the ICO apparently told The Times.

A "personal data incidents" statement was buried on page 46 of the ICO's annual report (PDF), which unsurprisingly called for more money and greater powers.

It's unclear if the ICO fined the ICO or let the ICO off with a gentle warning from the ICO. ®

New hybrid storage solutions

More from The Register

next story
Google recommends pronounceable passwords
Super Chrome goes into battle with Mr Mxyzptlk
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
Snowden, Dotcom, throw bombs into NZ election campaign
Claim of tapped undersea cable refuted by Kiwi PM as Kim claims extradition plot
Reddit wipes clean leaked celeb nudie pics, tells users to zip it
Now we've had all THAT TRAFFIC, we 'deplore' this theft
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
TorrentLocker unpicked: Crypto coding shocker defeats extortionists
Lousy XOR opens door into which victims can shove a foot
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.