The ICO and your business

Did you know that the Information Commissioner’s Office (ICO) does more than regulate GDPR?

They are the UK body responsible for upholding information rights in the public interest.

So, for example, they fine businesses who don’t stay within the law – as this article explains.

They are also really concerned with educating organisations and individuals about data protection and cyber security.

What the ICO has to say…

Elizabeth Denham’s (CEO at the ICO) speech at the National Cyber Security Centre’s CYBERUK 2018 event, (Manchester Central, 12 April 2018) makes for interesting reading.

One of the most important parts of the speech states:

The new data protection reforms can be summarised in three main areas – transparency, control and accountability.

The law requires you to be transparent and tell people what you will do with their data.

You then have to stick to what you said.

This is the strengthened part of the law: you should be prepared to account to your customers and the regulator for what you have done.

The new legislation also makes “data protection by design” a legal requirement, as well as the use of data protection impact assessments.