Articles about Ico

Week #25 - Pet Peeves SMS by  cc 2.0 attribution noderivs

ICO fines PPI claims firm £80,000 over 1.3m spam SMS deluge

The Information Commissioner's Office has served up penalty of £80,000 to a PPI claims company that sent more than 1.3 million spam texts. Brum-based UKMS Money Solutions Limited (UKMS) had bought numbers in bulk from list brokers which it subsequently spammed to encourage people to make compensation claims for mis-sold …
Woman slaps man. Pic: Shutterstock

Privacy watchdog ICO slashes its fines in half

The total value of fines issued by the UK Information Commissioner's Office has halved compared with last year – despite the watchdog receiving roughly the same number of complaints about data protection. In 2014/15, the ICO issued £1.1m in so-called civil monetary penalties, £386,000 of which were for companies behind nuisance …
Kat Hall, 02 Jul 2015

ICO fines anti nuisance call company for making nuisance calls

The Information Commissioner’s Office (ICO) has fined a company that blocks nuisance calls for making nuisance calls. The ICO announced yesterday that Point One Marketing Ltd (previously Conservo Digital Ltd) from Bournemouth would have to fork out £50,000 for harassing people. The company, which trades as "Stop the Calls", …
Jennifer Baker, 11 Aug 2015

Oi, Google! Remove links to that removed story, yells forceful ICO

Google has been ordered to remove links referencing a story it had already removed, Blighty's information watchdog, the Information Commissioner's Office, said late Thursday. The search engine had previously removed links relating to an individual's minor criminal offence from more than ten years, following a take-down request …
Kat Hall, 21 Aug 2015
Two upended shopping trolleys in an alleyway. Photo by Cyron, licensecd under CC 2.0

ICO 'making enquiries' into bizarre shopper data spill at M&S

The Information Commissioner's Office is making enquiries into Marks & Spencer's website after customers complained that they were being presented with each others' personal details while shopping. Marks & Spencer made its website temporarily unavailable last night after what it claimed was "a technical issue". The company's …
Crop of doctor with pen and clipboard

ICO probes NHS clinic's data blunder that exposed HIV+ status of 800 patients

The ICO is looking into a data blunder at 56 Dean Street, a sexual health clinic operated as part of Chelsea and Westminster NHS Foundation Trust, after it emailed the HIV positive status of nearly 800 patients to the entire group. The data breach was committed through the email circulation of the clinic's "OptionE" newsletter …

UK call centre linked to ‘millions’ of nuisance robo-calls raided by ICO

UK data privacy watchdogs raided Thursday a call centre allegedly linked to millions of nuisance calls. Officers from the ICO (Information Commissioner's Office) and Trading Standards conducted the operation against a business in the Brighton area suspected of using automatic dialling technology to make four to six million …
John Leyden, 12 Mar 2015

'Right to be forgotten' festers as ICO and Google come to blows

Google is receiving a telling off from the UK's Information Commissioner's Office and may face legal action after failing to adequately respond to several so-called "right to be forgotten" requests. The ICO told The Register that "since the details of the ruling were first announced, we have handled over 183 complaints from …
Gun slinger, image: Shutterstock

Thousands of 'lost data' reports mean we should ARM the ICO, says infosec bod

Infosec 2015 Thefts and losses of computers and laptops often go unreported to data privacy watchdogs and could represent a huge hidden risk for the leak of confidential data, according to new research. The Information Commissioner’s Office received 1,089 data breach reports between March 2014 and March 2015, yet police forces across the UK …
John Leyden, 02 Jun 2015

ICO's data protection tentacles will penetrate NHS bodies

NHS bodies in the UK can now be forced to open themselves up to data protection audits under new powers handed to the Information Commissioner's Office (ICO). The watchdog told that its audits regime follows a "participative approach" and that therefore it would first ask health bodies if they would voluntarily …
OUT-LAW.COM, 03 Feb 2015
Airware video

ICO warns UK broadcasters over filming using drones

UK broadcasters have been warned that their use of unmanned drones for filming purposes must adhere to data protection laws. The Information Commissioner's Office (ICO) said that drones "can be highly privacy intrusive" because they can capture images of individuals "unnecessarily". The watchdog said organisations using …
OUT-LAW.COM, 21 Oct 2014

Amazon 'adware' laden Ubuntu passes ICO's data smell test

The Amazon "shopping suggestions" feature built into Ubuntu desktops does not violate consumer protections under European and UK privacy law. That’s according to the Information Commissioner following a complaint lodged by a Ubuntu blogger over Ubuntu’s controversial Shopping Lens. Introduced in Ubuntu 12.10, the Amazon Lens …
Gavin Clarke, 07 Aug 2014

Racing Post escapes ICO fine after leaking info of 677K punters

UK sports-betting newspaper the Racing Post has received a stern warning – but not a fine – after it emerged that it had aired the private details of more than 677,000 customers as the result of a security breach last year. The October 2013 snafu resulted in the exposure of the names, addresses, passwords, dates of birth and …
John Leyden, 28 Aug 2014
Nervous girl bites nails


Businesses that send spam text messages, make nuisance calls or carry out other types of unsolicited direct electronic marketing activity could be fined up to £500,000 if their actions cause "annoyance, inconvenience or anxiety", under new plans unveiled by the UK government. The Department for Culture, Media and Sport (DCMS) …
OUT-LAW.COM, 28 Oct 2014
BBC logo 2012

ICO probes BBC after secret British army unit's info LEAKED

A BBC Panorama researcher who leaked confidential material from the programme's production company to the target of an investigation allegedly also leaked highly sensitive data about a secret British army unit. According to a report in the Independent, the UK's privacy regulator has been notified of what appears to be a serious …
Team Register, 03 Jul 2014

ICO plugs XSS vuln in its website. Only took watchdog FIVE YEARS

The Information Commissioner's Office (ICO) has finally fixed a security bug on its website - five years after it was first notified to the data privacy watchdog. IT consultant Paul Moore first warned the ICO about a cross site scripting (XSS) problem on its website in 2009. The flaw meant it was possible to introduce arbitrary …
John Leyden, 28 Mar 2014

ICO raps UK Student Loans Co for leaking MEDICAL files and more

The Information Commissioner’s Office (ICO) has criticised Blighty's Student Loans Company for handing students' medical reports and other private files over to the wrong people. In various blunders, records including medical notes and a psychological assessment were accidentally leaked to an unnamed outside organisation, sent …
John Leyden, 28 May 2014

CCTV warning notices NOT compliant with data protection laws – ICO

The government must take action to ensure that signs used to warn motorists that CCTV cameras are being used to monitor for parking offences are compliant with UK data protection laws, a watchdog has said. The Information Commissioner's Office (ICO) said that there are "deficiencies" in the information displayed to motorists …
OUT-LAW.COM, 10 Feb 2014
Twitter for Mac New

ICO issues guidelines on #FOI #requests through Twitter, Facebook

The Information Commissioner's Office (ICO) has issued new guidelines for public authorities around how they can respond to freedom of information (FOI) requests made via social media. The watchdog confirmed that FOI requests made via messages to accounts operated by public bodies on sites such as Twitter or Facebook can …
OUT-LAW.COM, 11 Mar 2014
hand holdin retro telephone

Nuisance call blocking firms fined £170,000 ... for making nuisance calls

The Information Commissioner's Office has raised a tidy £250,000 this week with two more fines for companies flogging nuisance call-blocking services by, yep, you guessed it, making nuisance calls, after receiving over 1,000 complaints. Poole-based Nuisance Call Blocked Ltd received a fine of £90,000, while Telecom Protection …

CPS fined £200k over theft of laptops holding 'sensitive interviews'

The Crown Prosecution Service has been slapped with a £200,000 fine by the Information Commissioner's Office for negligence that led to the theft of laptops containing police interviews regarding violent and sexual cases. The interviews were with 43 victims and witnesses and involved 31 investigations. Some of those related to …
Kat Hall, 04 Nov 2015

Want access to mobe users' location, camera, phone ID? EXPLAIN YOURSELVES - ICO

Software developers should consider deploying "just-in-time notifications" to inform users about the imminent processing of personal data in mobile applications (apps), the Information Commissioner's Office (ICO) has said. The UK's data protection watchdog said that the pop-up disclosures were one way companies could explain …
OUT-LAW.COM, 24 Dec 2013

ICO to focus only on 'serious, repeat' data-protection offenders

The Information Commissioner's Office (ICO) will not investigate every complaint it receives about data protection practices by organisations, under a draft new complaint-handling procedure outlined by the watchdog. The ICO said it intends to pass some complaints it receives onto organisations to deal with, and has set out a …
OUT-LAW.COM, 27 Dec 2013
NHS Files on a desk

GP surgeries MUST DO BETTER on data handling, says ICO

A number of GP surgeries in England allowed their employees to have unrestricted internet access - thereby increasing the risk of data being leaked, hacked and targeted by viruses, Britain's information watchdog warned today. Officials from the Information Commissioner's Office visited 24 GP practices between April and …
Kelly Fiveash, 28 Jan 2014

ICO: It's up to Google the 'POLLUTER' to tidy up 'right to be forgotten' search links

Google and its rivals are meeting privacy officials in Brussels today to discuss a recent European Court of Justice ruling that calls on search engine providers to de-link certain listings on their indexes. They are expected to look at practical implementations of the judgment from the European Union's highest court in May. It …
Kelly Fiveash, 24 Jul 2014

Win XP security deadline: Biz bods MUST protect user data – ICO

The end of support for XP on Tuesday doesn't only mean increased risk from hackers exploiting vulnerabilities that will never be patched. It also creates a heightened data protection risk to businesses, the UK's data privacy watchdog has warned. The Information Commissioner's Office (ICO) also warned that the end of support for …
John Leyden, 08 Apr 2014
Targeted Spam

ICO decides against probe of Santander email spam scammers

Santander customers say they are continuing to be deluged with Trojans and other junk to email addresses exclusively used with the bank months after the problem first surfaced back in November. At least two Reg readers have put in complaints to the Information Commissioner's Office. But the data privacy watchdog told us that it …
John Leyden, 21 Mar 2014

Sony coughs up £250K ICO fine after security fears

Sony has begrudgingly abandoned its fight to contest a £250,000 fine handed down by the Information Commissioner’s Office after its massive 2011 PlayStation Network data breach. The Japanese electronics giant was slapped with the fine back in January for breaching the Data Protection Act after the personal info of millions of …
Phil Muncaster, 17 Jul 2013
The buttons on a mobile phone glow in the dark

Gov mulls making it easier for ICO to squash marketing pests

The legal test that the Information Commissioner's Office (ICO) must meet before it can justify serving fines on businesses that send unsolicited marketing communications could be lowered, a Government representative has said. Lord Gardiner of Kimble said that the measure could be used to address concerns about nuisance calls …
OUT-LAW.COM, 18 Nov 2013

ICO: Private dicks broke data-protection rules when they blagged data

Two private investigators who tricked organisations into revealing personal details about customers have been found guilty of breaching the Data Protection Act. Barry Spencer, 41, and Adrian Stanton, 40, who ran ICU Investigations Ltd in Feltham, Middlesex, were convicted at Isleworth Crown Court of conspiring to unlawfully …
John Leyden, 21 Nov 2013
Photo of the Starship Enterprise's sick bay

Online pharmacy slapped with £130,000 fine for flogging customer data

Online pharmacy Pharmacy 2U has been slapped with a £130,000 fine by the Information Commissioner's Office for flogging customers to a marketing company without their consent. The ICO said Pharmacy 2U offered the customer names and addresses for sale through an online marketing list company. The ICO investigation found that …
Kat Hall, 20 Oct 2015
No junk mail. Pic: gajman, Flickr

Solar panel spammer hit by UK’s biggest ever nuisance calls fine

The UK's data privacy watchdog has issued its largest ever fine for a nuisance caller, £200,000, after a solar panels provider was found culpable for recklessly breaking marketing call regulations. An Information Commissioner’s Office (ICO) investigation discovered that Glasgow-based Home Energy & Lifestyle Management Ltd ( …
John Leyden, 30 Sep 2015
The Register breaking news

ICO: Data blunders by your cloud provider still YOUR fault

The Information Commissioner's Office (ICO) has warned businesses that they are still responsible for the safety of the data they own - even when that data is in the cloud. The regulator put out guidelines today for businesses on keeping data safe in the cloud. Dr Simon Rice, ICO technology policy advisor, hammered home the …
Anna Leach, 28 Sep 2012

ICO on beefed-up EU privacy rules: Biz bods will need 'explicit consent' to slurp data

Businesses can help ease the transition towards complying with new EU data protection rules by taking a number of steps now, the Information Commissioner's Office (ICO) has said. In an ICO blog, Deputy Information Commissioner David Smith said businesses can begin by reviewing their procedures for obtaining consent to the …
OUT-LAW.COM, 04 Nov 2013
The Register breaking news

ICO clamps down on nuisance calls, slaps £90k fine on Glasgow firm

A Glasgow company that deliberately nagged households with nuisance calls has been fined £90,000 by Britain's data protection watchdog. DM Design had annoyed the hell out of thousands of people by making nuisance marketing calls to their home telephone numbers. The Information Commissioner's Office said that the regulator and …
Kelly Fiveash, 20 Mar 2013

Brit mobile pay biz reveals historical cyber attacks, gets smacked in the share price

The share price of mobile payments business Optimal Payments has taken a banging after the company confessed it was only just beginning to investigate historical data breaches, following the discovery of its customers' data being trafficked online. The British company said that it had only come to know about the data breaches …

Home Office kept schtum on more than 30 data breaches last year

The Home Office suffered 33 data breaches during the last financial year – and did not report any of them to the Information Commissioner's Office (ICO) The department's annual report and accounts 2014-15 (PDF) reveals 33 "Personal Data Related Incidents" that took place in the last financial year, but were not formally …
The Register breaking news

Ex-ICO: Draft EU privacy rules will turn every citizen 'into a liar'

Britain's Information Commissioner wants the force of the European Data Protection Directive to fall on rogues, not on businesses which already face mountains of paperwork. That's the message that Chris Graham will be taking to Europe when he goes there to hash out a compromise on the new European Data Protection Directive …
Anna Leach, 06 Feb 2013

Quarter of a million quid fine for data-wipe gaffe? ICO told: Nae, laddie

The UK's data protection watchdog was not justified in serving a monetary penalty on a Scottish council over an allegedly flawed outsourcing arrangement it had with a data disposal contractor, an Information Rights Tribunal has ruled. Scottish Borders Council was issued with a £250,000 fine by the Information Commissioner's …
OUT-LAW.COM, 28 Aug 2013
The Register breaking news

UK biz baffled by Reding's planned data protection law rewrite: ICO

A large number of British businesses are clueless about many of the main provisions detailed in the European Union's proposed data protection reforms, a new report from the Information Commissioner's Office has claimed. Consultancy firm London Economics - which was commissioned to carry out the research (PDF) on behalf of the …
Kelly Fiveash, 15 May 2013
Dido Harding, Chief Executive of TalkTalk

Lawyers harrumph at TalkTalk's 'no obligation to encrypt' blurt

Lawyers have taken issue with claims by TalkTalk boss Dido Harding that the telco was under no legal obligation to encrypt customers' sensitive data. Harding's comments came on Sunday, three days after TalkTalk admitted a breach on its systems that may have exposed the personal details, including bank information, of up to …
John Leyden, 26 Oct 2015
The Register breaking news

ICO power to stop FOI dodgers 'some way off'

Christopher Graham, the information commissioner, has said that implementation of the justice committee's recommendation for his office to have more time to prosecute people who destroy data requested under freedom of information (FOI) is "still some way off". Although it is an offence to destroy information so as to avoid …

Nicked sensitive Avnet server disks sparks ICO probe

The Information Commissioner's Office (ICO) has confirmed it is investigating a potential data breach at Avnet Technology Solutions (TS) following the break-in prior to Christmas. As previously reported, thieves raided the enterprise distie's Haslingden office on 21 December and made off with hard disk drives containing archived …
Paul Kunert, 28 Feb 2012

Huge hack attack: UK data cops to probe Carphone Warehouse breach

Britain's data watchdog plans to investigate a massive hack attack on Carphone Warehouse's systems, which has put 2.4 million customers at risk of having their personal info ransacked by wrongdoers. On Saturday afternoon, the company coughed to the mega data breach and added that up to 90,000 subscribers may have had their …
Kelly Fiveash, 09 Aug 2015
The Register breaking news

Prudential cops £50k ICO slap for giving customer's life savings away

Insurance firm Prudential has been slapped with a £50,000 fine for merging the accounts of two customers' accounts with the same name and date of birth and not bothering to fix the situation when the customers complained. The company merged the two accounts with the same first name, surname and date of birth in March 2007, a …

OH DEAR, WHSmith: Sensitive customer data spaffed to world+dog

Updated British newsagent WHSmith has a major privacy hole on its website, after its magazine subscription service began emailing everyone on the mailing list. The data protection howler has been flagged up on Twitter by plenty of angry customers who fear having their personal information plundered by wrongdoers. However, despite the …
Kelly Fiveash, 02 Sep 2015
Boats storm girl photo via Nikolina Mrakovic

Don't panic, biz bods: A guide to data in the post-Safe Harbor world

The Safe Harbor agreement this week suddenly became of interest to a lot more IT managers than had previously given a stuff about it. But what is Safe Harbor, exactly? The Safe Harbor agreement between the US and the EEA - which comprises the member states of the EU plus Iceland, Norway and Liechtenstein – dating from 2000, …
Dave Cartwright, 09 Oct 2015

UK gets the Ashley Madison fear: Data privacy moans on the up

Consumer complaints about the way personal data is handled increased by 30 per cent from 2013 to 2014, according to figures from Pinsent Masons, acquired via several Freedom of Information requests to the Information Commissioners Office (ICO). Complaints about the security of personal information rose from 886 in 2013 to 1, …
John Leyden, 05 Oct 2015
The Register breaking news

ICO fines council £120,000 for crypto email fail

Stoke-on-Trent City Council has been fined £120,000 for failing to use proper cryptography, resulting in the details of a child-protection case being shared with the wrong people. Last December a solicitor involved in a child-protection case sent 11 e-mails relating to the case to the wrong email address, a simple typo meaning …
Bill Ray, 26 Oct 2012
The Register breaking news

ICO sets cookie-law flouters deadline - to open an HTML editor

The Information Commissioner's Office (ICO) has set some website operators a deadline to begin efforts to comply with UK regulations that set out rules for the use of cookies. Dave Evans, the ICO's group manager for business and industry, said that some website operators had failed to "engage" with the watchdog about their use …
OUT-LAW.COM, 12 Sep 2012