New controls to protect data in the public sector in UK

Powered by SC Magazine
 

In spite of [UK] government moves to tighten data security in the public sector, there is still much to be done, according to the information commissioner.

"Data security matters are being taken much more seriously," said Richard Thomas, "there will soon be much more accountability within the public sector."

Speaking at Infosec conference, the information commissioner said that the head of the civil service Sir Gus O'Donnell's report into the HM Revenue and Customs (HMRC) breach would be published shortly, and contains encouraging new regulatory guidance and advice on avoiding future breaches of a similar magnitude.

"There will be an increasing emphasis on data minimisation" continued Thomas, "in instances such as the MOD laptop loss, questions such as why was such detailed data on so many people kept for so long will become as important as asking how the laptop came to be unencrypted and stolen from the back of a car."

He continued to welcome new legislation allowing the ICO to conduct unannounced spot checks on data controllers in Whitehall, and announced that Prime Minister Gordon Brown was to announce similar measures for the rest of the public sector, and possibly private companies also. "We will be conducting spot checks in Whitehall departments next year", said Thomas.

In addition, new legislation within the Criminal Justice Bill currently before the Lords will make a criminal offence of identity theft, a key step in the battle against online organised crime.

Personal data has been lost at least 94 times since the HMRC breach last year, according to a report from the ICO office yesterday. Government departments were responsible for more than two-thirds of these losses (62).

The shadow justice secretary Nick Herbert responded to the report by accusing the government of not caring about people's personal information: "It's about time for ministers to get serious about personal information" he said.

Last November 25million child benefit claimants' details were mislaid by HMRC in one of the biggest data breaches of recent years.

Copyright © SC Magazine, US edition


 
 
 
Top Stories
The True Cost of BYOD - 2014 survey
Twelve months on from our first study, is BYOD a better proposition?
 
ANZ looks to life beyond the transaction
If digital disruptors think an online payments startup could rock the big four, they’ve missed the point of why people use banks, says Patrick Maes.
 
What InfoSec can learn from the insurance industry
[Blog post] Another way data breach laws could help manage risk.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
What is delaying adoption of public cloud in your organisation?







   |   View results
Lock-in concerns
  29%
 
Application integration concerns
  3%
 
Security and compliance concerns
  27%
 
Unreliable network infrastructure
  9%
 
Data sovereignty concerns
  21%
 
Lack of stakeholder support
  3%
 
Protecting on-premise IT jobs
  4%
 
Difficulty transitioning CapEx budget into OpEx
  3%
TOTAL VOTES: 1051

Vote