ICO fines: A timeline
We take a look back at what the ICO has been up to since it gained extra fining powers, which were used today for the first time.
In a response to the aforementioned MoJ call for evidence, the ICO said it supported prison sentences for serious breaches of the Data Protection Act. The watchdog claimed such a punishment would be a good deterrent against breaking the law.
November 2010
The ICO took a lot of flak in how it dealt with the Google Street View case. Many had called for the body to implement a fine after the search giant took payload data, including passwords and emails, when its cars did the rounds.
However, the ICO simply could not fine Google as most of the data was taken before its powers to do so came in. Whilst the search firm was deemed to have committed a serious breach of UK data protection laws, it didn't have to pay out.
November had started off with some promise, however, when information commissioner Christopher Graham said a fine would be handed out imminently. He also called for more post-legislative scrutiny of privacy laws.
But there were a number of breaches which went without fines the first at the Independent Parliamentary Standards Authority (IPSA), which led to MPs' information being placed at risk.
Later in the month, it emerged Stoke-on-Trent City Council lost a USB stick containing sensitive data of children in care. Again, the ICO said it was unable to hand out a monetary penalty as the incident occurred before 6 April.
Get the ITPro. daily newsletter
Receive our latest news, industry updates, featured resources and more. Sign up today to receive our FREE report on AI cyber crime & security - newly updated for 2024.
New Forest District Council was also found to have breached the Data Protection Act after placing planning applicants' personal data on its website. No fine was handed out.
Then, finally, the fines came, with plenty of security and data protection experts praising the move.
A 100,000 penalty was handed to Hertfordshire County Council, whilst employment services company A4e was hit with a 60,000 fine. The wait was over.
Tom Brewster is currently an associate editor at Forbes and an award-winning journalist who covers cyber security, surveillance, and privacy. Starting his career at ITPro as a staff writer and working up to a senior staff writer role, Tom has been covering the tech industry for more than ten years and is considered one of the leading journalists in his specialism.
He is a proud alum of the University of Sheffield where he secured an undergraduate degree in English Literature before undertaking a certification from General Assembly in web development.