The Information Commissioner’s Office has fined UK public sector bodies more than £2 million over the past 18 months as poor data handling practices have come to light.
Ominously for the public sector, such instances of malpractice (and the associated costs) are expected to impact even further as a result of the European Data Protection Directive, which was unveiled in draft form at the start of 2012.
Joseph Souren, VP & GM EMEA, Wave Systems, explains how public sector bodies can utilise the existing hardware capabilities in their devices to ensure that data is safely encrypted and compliant:
The European Data Protection Directive has been on the legislative horizon for some time. It mandates that those bodies that do not sufficiently protect personal data will face potentially significant fines – of up to 2% of their global annual turnover, a far higher financial penalty than that which currently exists in UK legislation. Given the vast increase in flow of personal data across the internet, and the number of security issues this breeds, regulation is a development that should be welcomed.