ICO



Cabinet Office fined £500,000 for New Year Honours data breach

The Information Commissioner’s Office (ICO) has fined the Cabinet Office £500,000 for disclosing postal addresses of the 2020 New Year Honours recipients online.

Published 2 December 2021

ICO calls on Google and other companies to eliminate existing privacy risks posed by adtech industry

The Information Commissioner’s Office (ICO) has today set out data protection standards that companies must meet to safeguard people’s privacy online when developing new advertising technologies (adtech).

Published 25 November 2021

ICO fines Glasgow company for making half a million nuisance calls

The Information Commissioner’s Office (ICO) has fined Glasgow-based company DialADeal Scotland Ltd (DDSL) £150,000 for making more than half a million nuisance marketing calls.

Published 6 September 2021

ICO consults on protecting personal data transferred outside of UK

The Information Commissioner’s Office (ICO) has launched a public consultation on its draft international data transfer agreement (IDTA) and guidance.

Published 12 August 2021

Data breaches reported to ICO drop 20 per cent due to Covid

The Information Commissioner's Office (ICO) has reported a 20 per cent drop in personal data breach reports, from 11,854 in the 2019/20 financial year, down to 9,532 in the most recent financial year.

Published 4 August 2021

ICO issued fines of £42m last year

The Information Commissioner’s Office (ICO) issued penalties totalling £42.4 million last year, according to new figures.

Published 19 April 2021

ICO advises UK government it can use phone data to track coronavirus

The UK government has been advised by the Information Commissioner's Office (ICO) that it can use anonymised mobile phone data in order to track people who have COVID-19.

Published 30 March 2020

Clydebank company fined £500,000 for making nearly 200 million nuisance calls

The Information Commissioner’s Office (ICO) has fined CRDNN Limited with the maximum £500,000 fine for making more than 193 million automated nuisance calls.

Published 3 March 2020

ICO publishes Code of Practice to protect children’s privacy online

The Information Commissioner’s Office (ICO) has published its final Age Appropriate Design Code – a set of 15 standards that online services should meet to protect children’s privacy.

Published 22 January 2020

Colin Hutton: Class action claims could make data breaches disastrous

While the SNP would have been pleased with its strong performance in May’s European elections, the party’s campaign got off to an unfortunate start when thousands of personalised letters (part of a mailshot to more than 400,000 Scottish voters) were sent to the wrong people. It was widely reported at the time how this error had caused some distress among mainly elderly recipients who were concerned their address was being targeted by fraudsters. The SNP, quite properly, reported itself to the Information Commissioner (ICO) and an investigation is now under way with the party facing potential regulatory fines.

Published 10 July 2019

ICO proposes to fine Marriott over £99 million for GDPR breach

The Information Commissioner's Office (ICO) has issued a notice of its intention to fine Marriott International £99.2 million for infringements of the General Data Protection Regulation (GDPR).

Published 10 July 2019

ICO proposes to fine British Airways £183.39m for GDPR breach

Following an investigation, the Information Commissioner's Office (ICO) has issued a notice of its intention to fine British Airways £183.39 million for infringements of the EU General Data Protection Regulation (GDPR).

Published 8 July 2019

Laura Irvine: Are cookies crumbling?

The ICO published new Guidance in relation to cookies and similar technology which means that the cookie banners that many websites currently use are no longer adequate and no longer provide a legal basis for placing cookies and other similar technologies on devices. It also applies to mobile apps which set cookies. This is a significant change in approach for the ICO who have interpreted the law in this area in a relaxed manner, until now, writes Laura Irvine.

Published 5 July 2019

EE fined £100,000 for sending marketing messages without consent

The Information Commissioner's Office (ICO) has fined telecoms company EE Limited £100,000 for sending over 2.5 million direct marketing messages to its customers, without consent.

Published 25 June 2019

Vote Leave handed £40,000 fine for unsolicited text messages

The Information Commissioner's Office (ICO) has fined Vote Leave Limited £40,000 for sending out thousands of unsolicited text messages in the run up to the 2016 EU referendum.

Published 21 March 2019