back to article Lock down your data – or get the cheque book out: ICO privacy violation fines are rising, say lawyers

Violating Europe's General Data Protection Regulation (GDPR) rules is a costly mistake that is only getting more expensive, according to lawyers totaling up fines from the UK's Information Commissioner's Office (ICO). Law firm Reynolds Porter Chamberlain (RPC) today said it has been tracking ICO fines since 2016 and has found …

  1. Whitter
    Unhappy

    Maybe an increase in fines but

    As the prosecution rate is so low, one can see why a CEO may just choose to ignore it.

  2. Mike 137 Silver badge

    Observant!

    '"This suggests that the ICO is being selective about its enforcement targets," said Richard Breavington'

    You don't need a law degree to spot this. However a basic principle has escaped everyone concerned. If you don't nip abuses in the bud they become ingrained and accepted as normal practice. As data protection consultants, since the GDPR came into force we've only found a couple of privacy "policies" that actually comply with the law. Indeed, the last time I looked, the ICO's own template "policy" for SMEs didn't. It requires all the statutory information, but not in a manner that allows the data subject to exercise their rights (which is what "transparency" actually means).

    1. Cederic Silver badge

      Re: Observant!

      It's tricky for the ICO though. They do need to assure that SMEs aren't misbehaving but they also need to avoid killing off UK business.

      There's also the challenge that individual SMEs breaching the rules are likely to impact far fewer people than large businesses, so the ICO probably feels obliged to focus resources where they'll have the greatest benefit.

      Have you fed back to the ICO your thoughts on their template? That does feel a sensible thing to assure is giving SMEs a good start point for compliance.

      1. Dan 55 Silver badge

        Re: Observant!

        Odd how according to this the UK has only managed three fines since the GDPR came in.

        The ICO is utterly toothless, by design. Don't worry, if there's something UK business won't be killed off by, it's the ICO. Other things, certainly, but not that.

  3. Frederic Bloggs

    SMEs?

    Point taken for SMEs, but British Airways? Marriott?

    1. osakajin Bronze badge

      Re: SMEs?

      Both are about to become SME...

  4. NeilPost Bronze badge

    British Airway’s

    To the scum running British Airway’s..... please cough up the £183m fine for your GDPR breach from the ICO before you start belly-aching/lobbying Tory lick-spittals about can’t afford it and CV19.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2020