Welcome

  • Naked Law is written by technology lawyers from Mills & Reeve. Our team is (mostly) based in Cambridge, England. We write about the latest legal and regulatory developments relating to information and communication technology, e-commerce, and privacy.

    Please send us an email or post a comment if you want to join in the discussions on Naked Law.

Disclaimer

  • The information on this blog is not legal advice. You should not rely on it and we don't accept liability in connection with it. Please read our full disclaimer and let us know if you would like us to advise on any legal issue.

« Will Microsoft end up with its "head on a spike"? | Main | Lost in music? Don’t forget the rest... »

Alarms but no surprises over live data testing

Another story of the ignorance among businesses about their obligations under the Data Protection Act hit the headlines recently: firms are "falling into data protection pitfalls" (ZDNet), playing "data protection roulette" (Techworld) and "gambling with [the] Data Protection Act" (PC Advisor).  This follows research conducted for Compuware indicating that 44% of senior IT managers use "live" customer data to test applications and that 48% of them are only "vaguely" aware of their obligations under the Act.

In short, businesses using the personal data of their customers risk breaching the Act in a number of ways: they may fall short of their obligation to use appropriate technical and organisational measures to protect the data (seventh principle); and the use may be outside the scope of the original purposes for which the data were collected (first and second principles).  Data protection practitioners will not be surprised to hear that companies are sailing close to the wind with the uses to which they put customer data.

This story follows news of the recent security breaches in India and the Information Commissioner's decision to issue his first enforcement notice against the owners of a website for using electoral roll data from before 2002 following 1,600 complaints received by the ICO's office.

Posted by Peter on July 11, 2006 at 09:59 AM |

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d8341f935853ef00d834d619cc69e2

Listed below are links to weblogs that reference Alarms but no surprises over live data testing:

Comments

Des

See later post http://www.typepad.com/t/trackback/5415691

Posted by: Des | July 19, 2006 at 10:09 AM

Verify your Comment

Previewing your Comment

Posted by:  | 

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been saved. Comments are moderated and will not appear until approved by the author. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Post a comment

Comments are moderated, and will not appear until the author has approved them.