The Information Commissioner's Office (ICO) has fired the starting gun for the pilot phase of its "regulatory sandbox", with ten data-dependent projects ranging from biometric tracking to consent management taking part in the initiative.
This scheme offers organisations an environment in which the UK data regulator will provide support and guidance as they develop innovative products and services that heavily rely on the use of personal data.
During the process, the ICO will oversee the planning and implementation of these projects to ensure they're fully compliant with the General Data Protection Regulation (GDPR).
"The ICO supports innovation in technology and exciting new uses of data, while ensuring that people's privacy and legal rights are protected," said the information commissioner, Elizabeth Denham.
"We have always said that privacy and innovation are not mutually exclusive and there doesn't need to be an either-or choice between the two.
"The sandbox will help companies and public bodies deliver new products and services of real benefit to the public, with assurance that they have tackled built-in data protection at the outset."
The ICO will also use this as an opportunity to observethe industry for developments in technology and innovation, and establish both the regulatory opportunities and challenges they will generate.
The first ten pilot projects were selected from 64 applicants and are run by organisations including NHS Digital, Heathrow Airport, the Ministry of Housing and Local Government, and an authentication firm named TrustElevate.
Heathrow Airport will test its Automation of the Passenger Journey programme, which involves using facial recognition technology at each checkpoint throughout the airport from check-in to boarding gates.
NHS Digital aims to work on the design and development of a central mechanism for collecting and managing patient consents for sharing healthcare data for purposes such as medical research and clinical trials.
The Ministry of Housing Communities and Local Government, meanwhile, has partnered with the Department of Work and Pensions and Blackpool Council to match personal information controlled by various parties. This is in order to understand more about the private rented sector in Blackpool and how to improve the quality of properties.
The Greater London Authority's Violence Reduction Unit (VRU), which is also part of the project, aims to integrate various datasets, including health, social and crime data, to better understand how public health and social services can be managed to reduce crime.
The ICO first teased the sandbox last year, before opening the scheme up to applications from the end of March.
The next stage will involve devising detailed plans for each project before work begins on testing the compliance of these ideas. All work is expected to be completed by September 2020, by which point these products and services will have been fully assessed.
The projects developed are expected to be fully GDPR-compliant, and run into fewer regulatory hurdles at launch.
-
AI is helping bad bots take over the internetNews Automated bot traffic has surpassed human activity for the first time in a decade, according to Imperva
-
Two years on from its Series B round, Hack the Box is targeting further growthNews Hack the Box has grown significantly in the last two years, and it shows no signs of slowing down
-
ICO admits it's too slow dealing with complaints – so it's eying up automation to cut staff workloadsNews The UK's data protection authority has apologized for being slow to respond to data protection complaints, saying it's been overwhelmed by increased workloads.
-
IBM: Data governance for data-driven organizationswhitepaper Master your data management
-
“Limited resources” scupper ICO probe into EasyJet breachNews The decision to drop the probe has been described as “deeply concerning” by security practitioners
-
Surge in workplace monitoring prompts new ICO guidelines on employee privacyNews Detailed guidance on how to implement workplace monitoring could prevent data protection blunders
-
TikTok could be hit with £27m fine for failing to protect children's privacyNews Social media firm issued with a notice from the ICO for potential violations of UK data protection laws
-
What is AdTech and why is it at the heart of a regulation storm?In-depth The UK data regulator has come under heavy fire for consistently delaying much-needed action, privacy groups say
-
ICO crackdown on AI recruitment part of three-year vision to save businesses £100 millionNews ICO25 outlines a fresh approach that involves releasing learning materials, advice, and a new ICO-moderated discussion forum for businesses
-
Clearview AI fined £7.5m over improper use of UK dataNews Australian facial recognition firm collected 20 billion images from the internet without consent in order to build its database
