What's the point?
Great idea. Fines and all that. What can I say, hurray. In a sort of muted way.
The ICO Data Protection staff claimed they were 'not techical experts' when confronted with Phorm. They didn't even use the enforcement powers they *already had*. Spinvox, no action there either.
So big stick. Still no clue how to hit people with it. Possibly even a danger to themselves now.
Before fines will be an effective measure we need the ICO Data Protection staff replaced - as a whole - by people who comprehend basic IT (never mind complex IT). And people who serve the public they are supposed to protect, instead of commercial interests.
The ICO Data Protection function is - currently - a pointless waste of tax, fresh air, energy, and office space.
(Welcome Mat, because it welcomes capable new comers, and softens the step of people who really should be leaving).