How the Data Protection Act's death will punish the UK economy
If the UK hands over data protection duties to the EU, it will scare off future foreign investment, says Tom Brewster.
COMMENT The Data Protection Act is on death's door. When it goes, it won't just radically alter how information is processed and protected in the UK, it will have serious, pejorative consequences for our economy too.
That was what IT Pro heard this week from two leading data protection lawyers lawyers who have seen drafts of what the European Commission is planning. In the coming months, they believe the EC will not propose a directive for nations to use as guidance, but will devise European-wide regulation for all member states to adhere to.
Despite the Commission's best intentions, however, the laws look set to bring more red tape to constrain companies working in Europe, the same red tape the Coalition has promised to cut. A host of requirements will be placed on businesses, which will likely deter many from investing in the UK. It will bring over-regulation of the most pernicious order.
The laws look set to bring more red tape to constrain companies working in Europe, the same red tape the Coalition has promised to cut.
This week, the EU again outlined its aggressive stance. Viviane Reding, vice-president of the European Commission, told delegates at a GSMA Europe conference that under her proposals there would be a strong focus on privacy by design.
"Businesses will have to pay utmost attention to security of information and privacy by design. These features should be well-integrated in the design of cloud computing products and services," Reding said. "The real winners will be those companies and service providers no matter where they are from that understand the competitive advantage of having built-in privacy features.
"When a data breach happens, a company will have to inform the national supervisory authority immediately and the individual whose data has been compromised or stolen."
Get the ITPro. daily newsletter
Receive our latest news, industry updates, featured resources and more. Sign up today to receive our FREE report on AI cyber crime & security - newly updated for 2024.
That latter statement confirmed what appeared in a Financial Times report late last week, which hinted companies would have just 24 hours to confess to a breach. That same report suggested the EC was hoping to gain powers to fine businesses up to five per cent of their revenue for data snafus.
Furthermore, the Commission wants companies with 250 or more employees to have a data protection officer in place. SMEs will not be pleased.
So, businesses in the EU will be forced to employ more personnel, be threatened with massive fines and have to spend more money on development to ensure privacy-as-default in everything they do.
Tom Brewster is currently an associate editor at Forbes and an award-winning journalist who covers cyber security, surveillance, and privacy. Starting his career at ITPro as a staff writer and working up to a senior staff writer role, Tom has been covering the tech industry for more than ten years and is considered one of the leading journalists in his specialism.
He is a proud alum of the University of Sheffield where he secured an undergraduate degree in English Literature before undertaking a certification from General Assembly in web development.