The Information Commissioner's Office wants your ideas...
By Tim Ferguson
Published: 14 August 2007 11:23 GMT
A shake-up of the way organisations share personal information could be on the way following the publication of a new set of guidelines by the Information Commissioner's Office (ICO).
The ICO's framework code of practice for sharing personal information - both between and within organisations - has been made available for public consultation until 1 October this year.
The framework is designed to help organisations achieve good practice and comply with the Data Protection Act as more and more personal information is shared between organisations.
silicon.com's Full Disclosure campaign - what we are asking for...
silicon.com wants the government to review its data protection legislation and improve the reporting of information security breaches in the public and private sectors.
We are calling for greater public debate and for the government to consider legislation that would require organisations that suffer information security breaches to alert their customers if there is a chance the breach has put individuals' sensitive personal data at risk.
We want to hear your views about this campaign and the issues it raises. Make your voice heard by leaving a Reader Comment below, emailing us at editorial@silicon.com or signing the 10 Downing Street e-petition.
The code addresses what the ICO says are the main data protection issues of information security, accuracy of information and retention periods.
The ICO is encouraging organisations to use the guidelines to make well-informed decisions about information sharing and even produce their own codes of practice.
Iain Bourne, head of data protection projects at the ICO, said organisations must share information responsibly or risk losing individuals' trust.
He added the code should reduce "uncertainty that can surround information sharing".
The framework is designed to be flexible to cater for the needs of different organisations, depending on the kind of information sharing they're involved with.
The ICO said organisations could adopt the framework entirely while others may wish to adjust it to fit with existing policies or use it to evaluate existing procedures.
Set standards for user access, data quality and employee records, consistent with company policies and Data Protection Act guidelines. Good knowledge ...
The purpose of the role is to develop strategy, policy and guidance to promote and develop 'best practice' as defined by the Information Governance ...
Regularly Audit IS Divisional compliance to Records and Document Management Guidelines As Information Security Officer (ISO27001 standards), you will ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Dell PowerVault DL2100 Powered by CommVault - Spec Sheet
Data Protection Strategies: Deduplication for More Efficient Backups
True Convergence Demands a Communication Service Provider that Embraces a Customer-Centric...
Learn how Performance Metrics for Telcomm Expense Management Drive new ROIs and SLAs
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Mark Crichard Doing business with citizen developers: Beware the legal pitfalls Legal Eye: Make sure your business is protected from potential hazards
Tim Ferguson How CIOs can achieve post-recession success Q&A: McKinsey & Company on living in the 'new normal' business world