Feeds

Articles about Ico

BBC logo 2012

ICO probes BBC after secret British army unit's info LEAKED

A BBC Panorama researcher who leaked confidential material from the programme's production company to the target of an investigation allegedly also leaked highly sensitive data about a secret British army unit. According to a report in the Independent, the UK's privacy regulator has been notified of what appears to be a serious …
Team Register, 03 Jul 2014

ICO plugs XSS vuln in its website. Only took watchdog FIVE YEARS

The Information Commissioner's Office (ICO) has finally fixed a security bug on its website - five years after it was first notified to the data privacy watchdog. IT consultant Paul Moore first warned the ICO about a cross site scripting (XSS) problem on its website in 2009. The flaw meant it was possible to introduce arbitrary …
John Leyden, 28 Mar 2014

ICO raps UK Student Loans Co for leaking MEDICAL files and more

The Information Commissioner’s Office (ICO) has criticised Blighty's Student Loans Company for handing students' medical reports and other private files over to the wrong people. In various blunders, records including medical notes and a psychological assessment were accidentally leaked to an unnamed outside organisation, sent …
John Leyden, 28 May 2014

CCTV warning notices NOT compliant with data protection laws – ICO

The government must take action to ensure that signs used to warn motorists that CCTV cameras are being used to monitor for parking offences are compliant with UK data protection laws, a watchdog has said. The Information Commissioner's Office (ICO) said that there are "deficiencies" in the information displayed to motorists on …
OUT-LAW.COM, 10 Feb 2014
Twitter for Mac New

ICO issues guidelines on #FOI #requests through Twitter, Facebook

The Information Commissioner's Office (ICO) has issued new guidelines for public authorities around how they can respond to freedom of information (FOI) requests made via social media. The watchdog confirmed that FOI requests made via messages to accounts operated by public bodies on sites such as Twitter or Facebook can trigger …
OUT-LAW.COM, 11 Mar 2014

ICO: It's up to Google the 'POLLUTER' to tidy up 'right to be forgotten' search links

Google and its rivals are meeting privacy officials in Brussels today to discuss a recent European Court of Justice ruling that calls on search engine providers to de-link certain listings on their indexes. They are expected to look at practical implementations of the judgment from the European Union's highest court in May. It …
Kelly Fiveash, 24 Jul 2014

Win XP security deadline: Biz bods MUST protect user data – ICO

The end of support for XP on Tuesday doesn't only mean increased risk from hackers exploiting vulnerabilities that will never be patched. It also creates a heightened data protection risk to businesses, the UK's data privacy watchdog has warned. The Information Commissioner's Office (ICO) also warned that the end of support for …
John Leyden, 08 Apr 2014

Want access to mobe users' location, camera, phone ID? EXPLAIN YOURSELVES - ICO

Software developers should consider deploying "just-in-time notifications" to inform users about the imminent processing of personal data in mobile applications (apps), the Information Commissioner's Office (ICO) has said. The UK's data protection watchdog said that the pop-up disclosures were one way companies could explain to …
OUT-LAW.COM, 24 Dec 2013

ICO to focus only on 'serious, repeat' data-protection offenders

The Information Commissioner's Office (ICO) will not investigate every complaint it receives about data protection practices by organisations, under a draft new complaint-handling procedure outlined by the watchdog. The ICO said it intends to pass some complaints it receives onto organisations to deal with, and has set out a …
OUT-LAW.COM, 27 Dec 2013
NHS Files on a desk

GP surgeries MUST DO BETTER on data handling, says ICO

A number of GP surgeries in England allowed their employees to have unrestricted internet access - thereby increasing the risk of data being leaked, hacked and targeted by viruses, Britain's information watchdog warned today. Officials from the Information Commissioner's Office visited 24 GP practices between April and November …
Kelly Fiveash, 28 Jan 2014
Targeted Spam

ICO decides against probe of Santander email spam scammers

Santander customers say they are continuing to be deluged with Trojans and other junk to email addresses exclusively used with the bank months after the problem first surfaced back in November. At least two Reg readers have put in complaints to the Information Commissioner's Office. But the data privacy watchdog told us that it …
John Leyden, 21 Mar 2014
The buttons on a mobile phone glow in the dark

Gov mulls making it easier for ICO to squash marketing pests

The legal test that the Information Commissioner's Office (ICO) must meet before it can justify serving fines on businesses that send unsolicited marketing communications could be lowered, a Government representative has said. Lord Gardiner of Kimble said that the measure could be used to address concerns about nuisance calls. …
OUT-LAW.COM, 18 Nov 2013

Sony coughs up £250K ICO fine after security fears

Sony has begrudgingly abandoned its fight to contest a £250,000 fine handed down by the Information Commissioner’s Office after its massive 2011 PlayStation Network data breach. The Japanese electronics giant was slapped with the fine back in January for breaching the Data Protection Act after the personal info of millions of …
Phil Muncaster, 17 Jul 2013
gavel_judgment_channel

ICO: Private dicks broke data-protection rules when they blagged data

Two private investigators who tricked organisations into revealing personal details about customers have been found guilty of breaching the Data Protection Act. Barry Spencer, 41, and Adrian Stanton, 40, who ran ICU Investigations Ltd in Feltham, Middlesex, were convicted at Isleworth Crown Court of conspiring to unlawfully …
John Leyden, 21 Nov 2013

ICO on beefed-up EU privacy rules: Biz bods will need 'explicit consent' to slurp data

Businesses can help ease the transition towards complying with new EU data protection rules by taking a number of steps now, the Information Commissioner's Office (ICO) has said. In an ICO blog, Deputy Information Commissioner David Smith said businesses can begin by reviewing their procedures for obtaining consent to the …
OUT-LAW.COM, 04 Nov 2013

Quarter of a million quid fine for data-wipe gaffe? ICO told: Nae, laddie

The UK's data protection watchdog was not justified in serving a monetary penalty on a Scottish council over an allegedly flawed outsourcing arrangement it had with a data disposal contractor, an Information Rights Tribunal has ruled. Scottish Borders Council was issued with a £250,000 fine by the Information Commissioner's …
OUT-LAW.COM, 28 Aug 2013
The Register breaking news

ICO clamps down on nuisance calls, slaps £90k fine on Glasgow firm

A Glasgow company that deliberately nagged households with nuisance calls has been fined £90,000 by Britain's data protection watchdog. DM Design had annoyed the hell out of thousands of people by making nuisance marketing calls to their home telephone numbers. The Information Commissioner's Office said that the regulator and …
Kelly Fiveash, 20 Mar 2013
The Register breaking news

ICO: Data blunders by your cloud provider still YOUR fault

The Information Commissioner's Office (ICO) has warned businesses that they are still responsible for the safety of the data they own - even when that data is in the cloud. The regulator put out guidelines today for businesses on keeping data safe in the cloud. Dr Simon Rice, ICO technology policy advisor, hammered home the …
Anna Leach, 28 Sep 2012
Homer Simpson reading on a tablet

UK data watchdog broke data law, says UK data watchdog

Britain's data cops have coughed to a serious security screw-up at the Information Commissioner's Office, and concluded that the ICO - only mildly - violated the Data Protection Act that it is supposed to police. It carried out an internal probe into what the ICO passively described as a "non-trivial security incident" that …
Kelly Fiveash, 16 Jul 2014
The Register breaking news

Ex-ICO: Draft EU privacy rules will turn every citizen 'into a liar'

Britain's Information Commissioner wants the force of the European Data Protection Directive to fall on rogues, not on businesses which already face mountains of paperwork. That's the message that Chris Graham will be taking to Europe when he goes there to hash out a compromise on the new European Data Protection Directive …
Anna Leach, 06 Feb 2013
The Register breaking news

UK biz baffled by Reding's planned data protection law rewrite: ICO

A large number of British businesses are clueless about many of the main provisions detailed in the European Union's proposed data protection reforms, a new report from the Information Commissioner's Office has claimed. Consultancy firm London Economics - which was commissioned to carry out the research (PDF) on behalf of the …
Kelly Fiveash, 15 May 2013
The Register breaking news

Prudential cops £50k ICO slap for giving customer's life savings away

Insurance firm Prudential has been slapped with a £50,000 fine for merging the accounts of two customers' accounts with the same name and date of birth and not bothering to fix the situation when the customers complained. The company merged the two accounts with the same first name, surname and date of birth in March 2007, a …
The Register breaking news

ICO power to stop FOI dodgers 'some way off'

Christopher Graham, the information commissioner, has said that implementation of the justice committee's recommendation for his office to have more time to prosecute people who destroy data requested under freedom of information (FOI) is "still some way off". Although it is an offence to destroy information so as to avoid …
The Register breaking news

ICO fines council £120,000 for crypto email fail

Stoke-on-Trent City Council has been fined £120,000 for failing to use proper cryptography, resulting in the details of a child-protection case being shared with the wrong people. Last December a solicitor involved in a child-protection case sent 11 e-mails relating to the case to the wrong email address, a simple typo meaning …
Bill Ray, 26 Oct 2012
The Register breaking news

ICO hits the road to crack 'underlying problem' at data-leak councils

The Information Commissioner's Office (ICO) will meet representatives from local authorities to address what it has called an "underlying problem" with the bodies' approach to data protection. The ICO made the announcement after it reported that it had served civil monetary penalty notices to four separate local authorities in …
OUT-LAW.COM, 19 Dec 2012
The Register breaking news

ICO sets cookie-law flouters deadline - to open an HTML editor

The Information Commissioner's Office (ICO) has set some website operators a deadline to begin efforts to comply with UK regulations that set out rules for the use of cookies. Dave Evans, the ICO's group manager for business and industry, said that some website operators had failed to "engage" with the watchdog about their use …
OUT-LAW.COM, 12 Sep 2012
chart

Nicked sensitive Avnet server disks sparks ICO probe

The Information Commissioner's Office (ICO) has confirmed it is investigating a potential data breach at Avnet Technology Solutions (TS) following the break-in prior to Christmas. As previously reported, thieves raided the enterprise distie's Haslingden office on 21 December and made off with hard disk drives containing archived …
Paul Kunert, 28 Feb 2012
The Register breaking news

ICO: How 'sensitive' is personal data? Depends what it's used for...

The sensitivity of personal information should be determined by the reasons behind why the information is to be processed, the UK's data protection watchdog has said. The Information Commissioner's Office (ICO) outlined its view in a new paper in which it analysed the European Commission's proposed new EU Data Protection …
OUT-LAW.COM, 15 Feb 2013
grab_that_cash

ICO tries to justify hefty NHS data breach fines

The UK's data protection watchdog has defended its civil monetary penalty regime after it was criticised for the amounts of fines levied on public health bodies. Earlier this week Christopher Fincken, the chairman of the UK Council of Caldicott Guardians, said that the money NHS bodies were using to pay fines levied on them by …
OUT-LAW.COM, 11 Oct 2012
The Register breaking news

Google to ICO: We had no idea Street View data slurp was happening

Google has denied that it tried to cover up certain aspects of its Street View data slurp as the UK Information Commissioner's Office reopens its investigation into the incident. The ICO recently cracked open its cold case files on the Street View cars' sniffing of data from unsecured Wi-Fi networks. This was a result of the US …
The Register breaking news

ICO blasted offline by DDoS cannon in Leveson protest

The UK's Information Commissioner's Office website has been blown offline by a distributed-denial-of-service attack that appears to be a hacktivist protest over the Leveson Inquiry. The ICO spokesperson told The Register in an emailed statement that access to the site had been disrupted over the past few days by the DDoS assault …
The Register breaking news

ICO: Nearly HALF all FOI complaints are about local councils

The Information Commissioner's Office (ICO) received 1,922 freedom of information complaints about local authorities in 2011-12, accounting for 43 per cent of the total number of complaints, according to the watchdog's latest annual report. The document says that of the 4,633 freedom of information complaints during the year, …
The Register breaking news

ICO slaps Durham Uni for exposing staff, students' privates

Durham University leaked the personal details of 177 staff and students in a training manual that turned out to reveal more than how to take out a library book. The university has just been given a slap on the wrist by the Information Commissioner's Office (ICO) and has promised to reform its data protection policies. In …
Anna Leach, 01 Mar 2012
The Register breaking news

ICO has yet to begin probing cookie violators

According to a freedom of information (FOI) request submitted by PC Pro magazine, 320 websites have been reported to the privacy watchdog through its online submission tool since a year's 'grace period' ended on 26 May. However, none of those sites have been investigated. "At present the information has not yet been analysed as …
OUT-LAW.COM, 21 Aug 2012
Data breach image

Who has your credit card data? 1 million HOLIDAY-MAKERS' RECORDS exposed

A UK-based online travel firm has been fined £150,000 over a breach of breach of the Data Protection Act after their "insecure" coding reportedly exposed more than a million customer records to cybercrooks. Think W3 Limited was hacked in December 2012 in an attack that relied on what the ICO described as "insecure" coding on the …
John Leyden, 24 Jul 2014
Targeted Spam

Authorities swoop on illicit Wolverhampton SPAM FARM

UK data privacy experts have raided an SMS spam farm blamed for spewing out more than 350,000 nuisance messages to mobiles. The Information Commissioner’s Office (ICO) seized hundreds of SIM cards on Thursday, after raiding a SIM farm in offices in Wolverhampton. Initial estimates suggest the impounded kit could have been used …
John Leyden, 27 May 2014
The Register breaking news

ICO probes Home Office refusal to reveal Snooper's Charter details

The Home Office could face legal action over its failure to explain the "Request Filter" system buried in its Communications Data Bill. That's the draft law that allows spooks and cops to massively ramp up surveillance of British citizens online. Critics have already lambasted the cryptically named “Request Filter” agency, …
Kelly Fiveash, 22 Apr 2013

Parking ticket firm 'exposed private info' - ICO making enquiries

Britain's privacy watchdog will investigate a major car-parking contractor after its website allegedly leaked drivers' personal information. Readers will be relieved to know, however, that representatives of chesty TV princess Katie Price say she has avoided having any sensitive private information revealed during the affair. …
Jasper Hamill, 08 Apr 2013
The Register breaking news

ICO to probe Essex council over data leak

The Information Commissioner's Office is making enquiries into a leak of data possibly involving the details up to 400 users of services provided by Essex county council. The council said that all affected residents had been informed. It has not yet been confirmed that the leak amounts to an offence under the Data Protection Act …
The Register breaking news

NHS fights record £325k ICO fine after clap records appear on eBay

An NHS Trust is disputing a record fine the Information Commissioner's Office has levelled on it for leaving tons of data on patients and staff on hard drives that were sold on eBay instead of being destroyed. Brighton and Sussex University Hospitals NHS Trust was served a civil monetary penalty of £325,000, the highest handed …
hmrc_cookie

ICO: Managed to comply with Cookies Law? Go help the other kids

The Information Commissioner's Office (ICO) wants public sector bodies that have made their websites comply with EU cookie regulations to share their knowledge with others. "We are seeing elements of good practice and what we hope is that, as those get implemented, it will be much easier for those who are not ready to see which …

British data cops: We need greater powers and more money

The UK's data privacy watchdog is lobbying for greater powers and funding after reporting a bumper workload. The latest annual report from the Information Commissioner’s Office (ICO) (PDF) reveals that the bureau responded to a record number of data protection and freedom of information complaints in the year to April 2014. The …
John Leyden, 15 Jul 2014

ICO on new Cookie Law: 'Don't expect torrent of enforcement action'

Amid criticism that hardly any UK government websites comply with the new EU-mandated "Cookie Law" that comes into force on 27 May, the ICO has announced that it will be sending out some letters, and then waiting for people to complain. The ICO will send out 50 letters to the UK's biggest websites over the next few days, its …
Anna Leach, 18 May 2012
Spam image

'Unsolicited texts' outrage: Man fined £4k for DPA breach

The owner of a marketing company which allegedly sent "millions of unsolicited text messages" was prosecuted for "failing to notify the ICO of changes to his notification" at Willesden Magistrates Court last week. Jayesh Shah, of Pune, India, was fined £4,000 for a breach of the Data Protection Act, and ordered to pay costs of £ …
John Leyden, 24 Jul 2014
The Register breaking news

ICO: Anonymised data doesn't HAVE to guarantee your privacy

Data anonymisation does not have to provide a 100 per cent guarantee to individuals' privacy in order for it to be lawful for organisations to disclose the information, the UK's data protection watchdog has said. The view of the Information Commissioner's Office (ICO), detailed in a new code of practice (108-page/2.15MB PDF) on …
OUT-LAW.COM, 26 Nov 2012
The Register breaking news

Experts: What ICO should know BEFORE your private info ends up in a skip

The view of the Information Commissioner's Office (ICO) that businesses do not require individuals' "explicit consent" in order to contract others to process their sensitive personal data is in contrast with the wording of data protection law, according to two experts. A spokesperson for the UK's data protection watchdog told …
OUT-LAW.COM, 17 Sep 2012
The Register breaking news

Graham: ICO will blow £3m on IT services

The UK's Information Commissioner's Office is looking to spend around £3m on its IT, with an invitation for tenders expected at the end of next month. Information commissioner Christopher Graham told vendors at Infosec during his keynote speech that the ICO hoped to publish its procurement notice in the Official Journal of the …
The Register breaking news

Former ICO deputy head denies blocking press probe

The ICO’s deputy commissioner has denied ever saying that the press was “too big” for the commission to take on. A former senior investigator for the Information Commissioner’s Office (ICO) told the Leveson Inquiry last Friday that he was asked not to pursue a case that pointed to private investigators getting confidential …
The Register breaking news

GiffGaff in data spaff, goodybag gaffe: ICO says its 'avin a laff

The people's network operator, GiffGaff, has leaked customer details to other customers and fouled up its goodybag topup scheme. Those who complained were surprised to find that GiffGaff isn't registered with the Information Commissioner's Office. The information leak was more embarrassing than damaging, and involved a load of …
Bill Ray, 14 Jun 2012
The Register breaking news

ICO makes school stand in corner over data theft

The ICO has given an Oldham school a stern telling-off after an unencrypted laptop with pupils' details was stolen from a teachers' car. The laptop contained "personal information" relating to 90 pupils at Freehold Community School when it was half-inched from the boot of the corduroy's car, which was parked outside their home …
Joe Fay, 21 Apr 2011