But this needs to change, says info commissioner...
By Tim Ferguson
Published: 11 October 2007 12:46 GMT
Small and medium-sized enterprises are not as aware of the principles of the Data Protection Act as larger organisations, according to the Information Commissioner's Office (ICO).
Only 22 per cent of SMEs surveyed are aware the Act requires them to keep customer information accurate and up to date, according to research commissioned by the ICO.
silicon.com's Full Disclosure campaign - what we are asking for...
silicon.com wants the government to review its data protection legislation and improve the reporting of information security breaches in the public and private sectors.
We are calling for greater public debate and for the government to consider legislation that would require organisations that suffer information security breaches to alert their customers if there is a chance the breach has put individuals' sensitive personal data at risk.
We want to hear your views about this campaign and the issues it raises. Make your voice heard by leaving a Reader Comment below, emailing us at editorial@silicon.com or signing the 10 Downing Street e-petition.
And only around half of respondents said they recognise the importance of keeping personal information secure.
The information commissioner, Richard Thomas, said these findings are a "considerable concern", when the increasing risk of identity fraud is taken into account.
He added that while individuals are urged to protect their personal information, businesses also have this responsibility - and must take it seriously.
Thomas said most organisations know it makes business sense to comply with the Act - according to the research, 94 per cent of businesses feel the legislation is needed.
The ICO has published official guidelines aimed at the SME sector, suggesting how they should train their staff to handle personal information properly.
Thomas added the ICO will not hesitate to take action against businesses that fail to protect customer information effectively.
The research was carried out in August and September this year and covered 813 organisations in the UK.
Set standards for user access, data quality and employee records, consistent with company policies and Data Protection Act guidelines. Good knowledge ...
Deliver a report recommending measures to ensure compliance with the data protection legislation. SAP Data Protection Act Gap Analysis Consultant ...
Areas of Responsibility - Develop and implement a knowledge management strategy to ensure that information resources are efficiently utilised and ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Dell PowerVault DL2100 Powered by CommVault - Spec Sheet
Data Protection Strategies: Deduplication for More Efficient Backups
True Convergence Demands a Communication Service Provider that Embraces a Customer-Centric...
Learn how Performance Metrics for Telcomm Expense Management Drive new ROIs and SLAs
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Mark Crichard Doing business with citizen developers: Beware the legal pitfalls Legal Eye: Make sure your business is protected from potential hazards
Tim Ferguson How CIOs can achieve post-recession success Q&A: McKinsey & Company on living in the 'new normal' business world