The European Commission (EC) has asked the UK to strengthen the powers of its data protection authority so that it complies with the European Union (EU) Data Protection Directive.
The Commission said its request takes the form of a reasoned opinion, which politely describes the second stage of action under EU infringement procedures.
It said national data rules are curtailed in several ways in the UK, leaving the standard of protection lower than required under the EU rules.
In a statement issued yesterday, the Commission’s vice president, Viviane Reding likened the Information Commissioner’s Office (ICO), as a watchdog with insufficient powers, to “keeping your guard dog tied up in the basement”.
Compliance would require the ICO to be granted power to monitor whether third countries’ data protection is adequate, and that these assessments should come before international transfers of personal information.
The ICO should also be able to perform random checks on people using or processing personal data and enforce penalties following these checks – a power the UK Information Commissioner has long called for, despite being granted some new powers earlier this year.
The European Commission also highlighted the fact that courts in the UK can refuse the right to have personal data rectified or erased; while it said the right to compensation for moral damage when personal information is used inappropriately is also restricted.
Jim Killock, executive director of the Open Rights Group, welcomed the EC escalation. “Data protection in the UK is weaker than it should be,” he stated. “Powers to fine and inspect private companies are vital. Nor does UK law recognise the idea of ‘moral damage’ from data intrusions, but will only punish provable financial harm.
“The new government has a great chance to strengthen UK law and make good on the coalition’s desire to protect our citizen’s privacy.”
The EC action means the Ministry of Justice, on behalf of the UK coalition government, now has two months to inform the Commission of any measures it plans to take to ensure full compliance with the EU directive.
A Ministry of Justice spokesperson told eWEEK Europe: “We are firmly committed to protecting UK citizens’ privacy and data. We are considering the Commission’s letter and will respond in due course.”
A spokesperson for the Information Commissioner’s Office said in a statement: “It is important that we have effective data protection regulation to help protect individuals’ personal information. We look forward to discussing the Commission’s detailed concerns with the Ministry of Justice and providing input into the UK government’s response.”
Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…
Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…
Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…
Welcome to Silicon In Focus Podcast: Tech in 2025! Join Steven Webb, UK Chief Technology…
European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…
San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…