The Information Commissioner's Office (ICO) published new guidance (pdf) this week that explains its view of what counts as personal data under the Data Protection Act (DPA). Information that is not personal data today may become personal data as technology advances, it says. A landmark ruling in 2003 challenged long-held …
we are so lucky to have the ICO...
to clear up any confusion and not muddy the waters further.
Obscurantism & Inaction
I'd say the ICO are losing the plot and spending too much time worrying how many angels can dance on the head of a pin. And it leads to some bizarre conclusions...
I think most people (the people who pay the piper but don't seem to call the tune), would assume that their email address is protected by the ICO and DPA as "private data". But they'd be wrong! I have had a written ruling from the ICO that an email address is NOT "personal data" - unless it is made up of your full names (initials won't cut it). That means that anyone with a mind to harvest email addresses, or sell on the email addresses in their database to the bad guys, have nothing to fear from the ICO. But then it's not the bad guys who DO fear the ICO, it's honest "data controllers" who have cause for concern!
- Xmas Round-up Ten top tech toys to interface with a techie’s Christmas stocking
- Xmas Round-up Ghosts of Christmas Past: Ten tech treats from yesteryear
- Review Hey Linux newbie: If you've never had a taste, try perfect Petra ... mmm, smells like Mint 16
- NSFW Oz couple get jiggy in pharmacy in 'banned' condom ad
- Analysis Microsoft's licence riddles give Linux and pals a free ride to virtual domination