iTnews
  • Home
  • News
  • Technology
  • Software

Applications testing breaches data law

By James Murray
Jul 4 2006 9:45AM
Follow google news

Firms that test apps using live customer data could be failing the Data
Protection Act.

Applications testing breaches data law
Firms that test apps using live customer data could be failing the Data
Protection Act.

Almost half of IT departments are failing to comply with the Data Protection Act (DPA) because they use live customer data to test applications without customers’ permission, according to research published today.

A survey of 100 senior IT decision makers by IT management software vendor Compuware found 44 percent were guilty of this practice, putting them at risk of prosecution under the DPA. Forty-eight percent said they were only “vaguely familiar” with this law.

Ian Clarke, global sales director for enterprise solutions at Compuware, said that using live customer data for testing in this way is not only illegal but also increases the risk of security breaches. “Testing environments tend to be insecure, with data often printed out and moved around,” he said. “The fines for breaching the DPA may be relatively small but the real risk is the damage to reputation following data breaches.”

The survey also indicates that firms that send application testing offshore are not doing enough to protect customer data. Eighty-three percent said the only step they took to secure data when outsourcing it to third parties was to set up non-disclosure agreements.

Clarke said companies should employ software testing tools that automatically replace live customer data with dummy data to reduce the risk of security breaches and ensure compliance with the DPA.

Anne Crofts, a partner at law firm Beachcroft, said it is rare for customers to complain about their data being used for testing, but added that companies risk legal problems and bad publicity if they continue the habit. “I’m not surprised many firms are still doing this, but it is a thoughtless practice,” she said. “It can’t be that difficult to use dummy data.”

The findings will increase pressure on European regulators to introduce US-style legislation to force firms to inform customers when their personal data has been compromised, according to Clarke. “I absolutely think Europe will move towards this model,” he said.

In related news, last week the US Federal Trade Commission, the body responsible for tackling data theft and fraud, reportedly informed 110 people that two of its laptops containing their personal details had been stolen.

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright © 2010 IT Week
Tags:
applicationsbreachesdatalawsoftwaretesting

Related Articles

  • Apple rolls out new, AI-powered Siri Apple rolls out new, AI-powered Siri
  • iTnews State of Data & AI Breakfast comes to Sydney this July iTnews State of Data & AI Breakfast comes to Sydney this July
  • Defence says Palantir is "sandboxed" in its environment Defence says Palantir is "sandboxed" in its environment
  • Microsoft teases new era of AI-driven devices Microsoft teases new era of AI-driven devices
Join our WhatsApp Channel

Partner Content

Thomas Peer Solutions unveils data cloud platform and executive leadership forum for 2026
Partner Content Thomas Peer Solutions unveils data cloud platform and executive leadership forum for 2026
Take control of your connectivity with Telstra’s Adaptive Networks Centre
Partner Content Take control of your connectivity with Telstra’s Adaptive Networks Centre
You meet the security standard. Shame no one can see it
Promoted Content You meet the security standard. Shame no one can see it
Agile isn’t the problem: why projects still fail, and what’s missing
Partner Content Agile isn’t the problem: why projects still fail, and what’s missing

Sponsored Whitepapers

Agile in the AI Era: why projects still fail
Agile in the AI Era: why projects still fail
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
High-volume data sources for AI-driven security analytics
High-volume data sources for AI-driven security analytics
How healthcare organisations can get more value from cloud
How healthcare organisations can get more value from cloud
1 in 3 companies lose SaaS data. Here’s how to prevent it
1 in 3 companies lose SaaS data. Here’s how to prevent it

Events

  • iTnews State of Security Breakfast iTnews State of Security Breakfast
  • iTnews State of Data & AI Breakfast iTnews State of Data & AI Breakfast
  • The 2026 iAwards The 2026 iAwards
  • Integrate 2026 Integrate 2026
  • Security Exhibition & Conference Security Exhibition & Conference
Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Defence says Palantir is "sandboxed" in its environment

Defence says Palantir is "sandboxed" in its environment
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
CBA sends over a decade of data to the cloud as AI demand ramps

CBA sends over a decade of data to the cloud as AI demand ramps
HBF faces AI agent to members for first time

HBF faces AI agent to members for first time
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.