- CNET NETWORKS UK BUSINESS SITES:
- atlarge.com
- BNET UK
- silicon.com
- SmartPlanet.com
- ZDNet.co.uk
But this needs to change, says info commissioner...
By Tim Ferguson
Published: 11 October 2007 12:46 BST
Small and medium-sized enterprises are not as aware of the principles of the Data Protection Act as larger organisations, according to the Information Commissioner's Office (ICO).
Only 22 per cent of SMEs surveyed are aware the Act requires them to keep customer information accurate and up to date, according to research commissioned by the ICO.
silicon.com's Full Disclosure campaign - what we are asking for...
silicon.com wants the government to review its data protection legislation and improve the reporting of information security breaches in the public and private sectors.
We are calling for greater public debate and for the government to consider legislation that would require organisations that suffer information security breaches to alert their customers if there is a chance the breach has put individuals' sensitive personal data at risk.
We want to hear your views about this campaign and the issues it raises. Make your voice heard by leaving a Reader Comment below, emailing us at editorial@silicon.com or signing the 10 Downing Street e-petition.
And only around half of respondents said they recognise the importance of keeping personal information secure.
The information commissioner, Richard Thomas, said these findings are a "considerable concern", when the increasing risk of identity fraud is taken into account.
He added that while individuals are urged to protect their personal information, businesses also have this responsibility - and must take it seriously.
Thomas said most organisations know it makes business sense to comply with the Act - according to the research, 94 per cent of businesses feel the legislation is needed.
The ICO has published official guidelines aimed at the SME sector, suggesting how they should train their staff to handle personal information properly.
Thomas added the ICO will not hesitate to take action against businesses that fail to protect customer information effectively.
The research was carried out in August and September this year and covered 813 organisations in the UK.
Experience of ISO27001, BS25999, the Data Protection Act, Freedom of Information Act, IS Awareness initiatives and data leakage auditing would also ...
Information Security Issues ISEB certification in (Information Security Management) and (Data Protection) Certification in 1SO 27001 (Risk Assessment ...
The responsibilities include co-ordinating these annual check, conducting back to work interviews for short term sickness, helping with Health and ...
CIO Agenda 2008
The exclusive silicon.com CIO Agenda 2008 survey looks at the CIO's tech shopping list for the year, examines whether IT budgets are rising or falling and reveals what the pain points are for tech chiefs this year. Find out more in our latest special report.
Stories from the web...
Copyright ©1995-2008 CNET Networks, Inc. All rights reserved. Top of page
Digg
Slashdot
Del.ici.ous
Stumble
Reddit
RSS Feeds
David Tebbutt Cloud computing: Silver lining… …or just marketing fog?
Steve Ranger Editor's Blog: The race to get the Olympic tech ready They're under starter's orders...