More than 20 MPs across four political parties have accused the UK's data regulator of failing to hold the government to account over privacy failures in the NHS Test and Trace system.
The politicians want the Information Commissioner Elizabeth Denham to consider fining the government after it admitted that it failed to conduct a legally required impact assessment on privacy, according to The Guardian.
A letter signed by 22 MPs suggests the government should receive a penalty "if it fails to adhere to the standards which the ICO is responsible for upholding".
Liberal Democrat MP Daisy Cooper, one of the letter's signatories, said the government had "seemingly played fast and loose with data protection measures" during the pandemic.
"The public needs a data regulator with teeth: the ICO must stop sitting on its hands and start using its powers - to assess what needs to change and enforce those changes - to ensure that the government is using people's data safely and legally," she said.
The letter was arranged by the Open Rights Group, which successfully forced the government to admit its failure to perform a data protection impact assessment. It features signatures from the Labour, the Lib Dems, Green and Scottish National Parties.
"There is something rotten at the heart of the ICO that makes them tolerate government's unlawful behaviour," said Jim Killock, executive director of the Open Rights Group.
"The ICO is a public body, funded by the taxpayers, and accountable to parliament. They must now sit up, listen and act. As a regulator, ICO must ensure that the government upholds the law."
In July, the government conceded that its contract-tracing programme had been operating unlawfully since it launched on 28 May. In a letter to campaigners, a government solicitor stated that NHS Track and Trace was developed at such pace and scale that it wasn't anywhere close to a primary focus.
"The Johnson government brought this programme forward more quickly than was practical, and we are all paying the consequences. Privacy is fundamental to trust," said Clive Lewis, the Labour MP for Norwich South.
-
Global cybersecurity spending is set to rise 12% in 2025 – here are the industries ramping up investmentNews Global cybersecurity spending is expected to surge this year, fueled by escalating state-sponsored threats and the rise of generative AI, according to new analysis from IDC.
-
Google Cloud is leaning on all its strengths to support enterprise AIAnalysis Google Cloud made a big statement at its annual conference last week, staking its claim as the go-to provider for enterprise AI adoption.
-
ICO admits it's too slow dealing with complaints – so it's eying up automation to cut staff workloadsNews The UK's data protection authority has apologized for being slow to respond to data protection complaints, saying it's been overwhelmed by increased workloads.
-
AI recruitment tools are still a privacy nightmare – here's how the ICO plans to crack down on misuseNews The ICO has issued guidance for recruiters and AI developers after finding that many are mishandling data
-
“You must do better”: Information Commissioner John Edwards calls on firms to beef up support for data breach victimsNews Companies need to treat victims with swift, practical action, according to the ICO
-
LinkedIn backtracks on AI training rules after user backlashNews UK-based LinkedIn users will now get the same protections as those elsewhere in Europe
-
UK's data protection watchdog deepens cooperation with National Crime AgencyNews The two bodies want to improve the support given to organizations experiencing cyber attacks and ransomware recovery
-
ICO slams Electoral Commission over security failuresNews The Electoral Commission has been reprimanded for poor security practices, including a failure to install security updates and weak password policies
-
Disgruntled ex-employees are using ‘weaponized’ data subject access requests to pester firmsNews Some disgruntled staff are using DSARs as a means to pressure former employers into a financial settlement
-
ICO reprimands Coventry school over repeated data protection failuresNews The ICO said the academy trust failed to follow previous guidance, which caused a serious data breach
