The Information Commissioner's Office (ICO) published new guidance (pdf) this week that explains its view of what counts as personal data under the Data Protection Act (DPA). Information that is not personal data today may become personal data as technology advances, it says. A landmark ruling in 2003 challenged long-held …
we are so lucky to have the ICO...
to clear up any confusion and not muddy the waters further.
Obscurantism & Inaction
I'd say the ICO are losing the plot and spending too much time worrying how many angels can dance on the head of a pin. And it leads to some bizarre conclusions...
I think most people (the people who pay the piper but don't seem to call the tune), would assume that their email address is protected by the ICO and DPA as "private data". But they'd be wrong! I have had a written ruling from the ICO that an email address is NOT "personal data" - unless it is made up of your full names (initials won't cut it). That means that anyone with a mind to harvest email addresses, or sell on the email addresses in their database to the bad guys, have nothing to fear from the ICO. But then it's not the bad guys who DO fear the ICO, it's honest "data controllers" who have cause for concern!
- Apple stuns world with rare SEVEN-way split: What does that mean?
- Special report Reg probe bombshell: How we HACKED mobile voicemail without a PIN
- RIP net neutrality? FCC boss mulls 'two-speed internet'
- Sony Xperia Z2: 4K vid, great audio, waterproof ... Oh, and you can make a phone call
- Pic Tooled-up Ryobi girl takes nine-inch grinder to Asus beach babe