Personal data breaches committed by the ICO
Dear Information Commissioner's Office,
Please consider the following questions;
1. How many personal data breaches has the ICO documented in its own records? For clarity, I am asking for the number of breaches committed by employees of the ICO. I am not asking for specific details about individual incidents, nor for names/titles of employees.
2. When a breach committed by the ICO is considered to carry a risk to the the data subject/s, how or where would this be escalated? In the way that organisations would report breaches to the ICO, does the ICO have to report their own breaches to an external body?
3. How many (if any) of the breaches recorded as committed by the ICO would meet the threshold to require escalation in line with question 2.
Yours faithfully,
Henry Davies
Thank you for contacting the Information Commissioner’s Office. We confirm
that we have received your correspondence.
If you have made a request for information held by the ICO we will contact
you as soon as possible if we need any further information to enable us to
answer your request. If we don't need any further information we will
respond to you within our published, and statutory, service levels. For
more information please visit:
[1]https://ico.org.uk/about-the-ico/our-inf...
If you have raised a new information rights concern - we aim to send you
an initial response and case reference number within 30 days.
If you are concerned about the way an organisation is handling your
personal information, we will not usually look into it unless you have
raised it with the organisation first. For more information please see our
webpage ‘raising a concern with an organisation’ (go to our homepage and
follow the link ‘for the public’). You can also call the number below.
If you have requested advice - we aim to respond within 14 days.
If your correspondence relates to an existing case - we will add it to
your case and consider it on allocation to a case officer.
Copied correspondence - we do not respond to correspondence that has been
copied to us.
For more information about our services, please see our webpage ‘Service
standards and what to expect' (go to our homepage and follow the links for
‘Report a concern’ and ‘Service standards and what to expect'). You can
also call the number below.
For information about what we do with personal data see our [2]privacy
notice.
If there is anything you would like to discuss with us, please call our
helpline on 0303 123 1113.
Yours sincerely
The Information Commissioner’s Office
Our newsletter
Details of how to sign up for our monthly e-newsletter can be found
[3]here.
Find us on Twitter [4]here.
References
Visible links
1. https://ico.org.uk/about-the-ico/our-inf...
2. https://ico.org.uk/global/privacy-notice/
3. https://ico.org.uk/about-the-ico/news-an...
4. http://www.twitter.com/ICOnews
12 November 2020
Case Reference: IC-66776-L4F4
Dear Henry
Please see the attached response to your recent information request.
Yours sincerely,
Jessica Lalor
Senior Information Access Officer
Information Commissioner's Office
Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow,
Cheshire SK9 5AF
T. 0330 414 6497 [1]ico.org.uk [2]twitter.com/iconews
Please consider the environment before printing this email.
For information about what we do with personal data see our privacy notice
at [3]www.ico.org.uk/privacy-notice.
References
Visible links
1. https://ico.org.uk/
2. https://twitter.com/iconews
3. https://www.ico.org.uk/privacy-notice
We work to defend the right to FOI for everyone
Help us protect your right to hold public authorities to account. Donate and support our work.
Donate Now