• Homepage
  • Our Solutions
    • Document Storage and Records Management
      • Deed Storage
      • Long Term Storage
      • Media Storage Solutions
      • On Demand Storage
      • Onsite Management
      • Secure Vault Storage
    • AP Invoice Automation Solution
      • Start Your AP Journey
      • E-Invoicing
      • Features
      • ERP Integrations
      • Why Kefron AP?
      • Pricing
    • Online Document Solutions
      • Online Document
        Management Software
      • Online Document Storage
    • Scanning and Data Capture
      • Scan to Digitise
      • Scan to Process
      • Digital Mailroom
    • Business Process Services
      • Data Management
      • Data Subject Access Requests
      • Securities and Deeds Management
  • Who We Are
    • About Kefron
    • Who We Are
    • Contact Us
    • Working with Kefron
  • News & Events
    • News & Events
    • Articles & Updates
    • Customer Stories
    • Upcoming Events
    • On-demand Events
    • Select Location
    • Ireland
    • United Kingdom
    • Rest of the world
  • Let’s Talk
  • Republic of Ireland website
  • UK website
  • Rest of the world website

The Role of the Information Commissioner’s Office (ICO) in Relation to the GDPR

The Information Commissioner’s Office (ICO) is the independent regulatory office in charge of upholding information rights in the interest of the public. The organisation covers the following:

  • Data Protection Act
  • Freedom of Information Act
  • Privacy and Electronic Communications Regulations (PECR)
  • Environmental Information Regulations
  • INSPIRE Regulations
  • The re-use of Public Sector Information Regulations

What does the ICO do?

Under the Data Protection Act 1998, all organisations that process personal information must register with the ICO, who publish the names and addresses of the data controllers. They also include a description of the type of processing each organisation performs. If your organisation processes personal data, failure to register with the ICO is against the law.

Complaints procedure

Every year, the ICO receives tens of thousands of complaints, enquiries and written concerns. Part of their role is to improve information rights practices for organisations, which is done by reviewing and investigating issues raised by the public. Each concern is recorded and in some cases, the ICO will collect data on similar problems or other issues associated with the organisation when deciding on the best solution.

Actions

The ICO issues monetary penalties of up to £500,000 to those who have broken the Data Protection Act 1998 or breached the terms of the Privacy and Electronic Communications Regulations (PECR). Serious breaches will be met with direct action and failure to comply with the law might lead to enforcement action.

The ICO serves assessment notices to organisations that aren’t willing to work harmoniously with the ICO and are at risk of breaching the Data Protection Act. The office is also responsible for appeals made under the Environmental Information Regulations 2004.

International responsibilities

As well as carrying out duties in the UK, the ICO also co-operates with international data protection authorities, including the European Commission. This co-operation involves:

  • Sharing information
  • Investigation of complaints
  • Working alongside partners to improve understanding of data protection laws and provide guidance where necessary

In the EU, the ICO works across all areas, including police and judicial co-operation, justice and freedom, and security. The ICO is part of the Article 29 Working Party, which represents each of the 28 EU data protection authorities, as well as Iceland, Liechtenstein and Norway.

How does the ICO support the GDPR?

The European Parliament, Council and European Commission’s aim for the General Data Protection Regulation is to unify data protection, making it more robust and secure for people within the European Union.

Elizabeth Denham, UK Information Commissioner, acknowledges that many people still question how GDPR will fit in with the UK leaving the EU. But she stresses that it’s still important to comply with GDPR. The ICO will work alongside the government to remain central in conversations about UK data protection law in the future and provide advice where necessary.

Following a survey published in 2017, the ICO produced its first piece of guidance to help explain to organisations how they can comply with the existing Data Protection Act in addition to the GDPR. The survey revealed that only one in four people trust businesses to handle their information.

With this data in mind, the new code of practice outlines how companies should explain to customers how their information is being used. But the guidelines warn business leaders that they need to be transparent with their customers if they want to regain their trust and see success in the digital economy post-Brexit.

Need help getting your business ready for the GDPR? Find all the information you need in our resources collection including training.

BlogBusiness Processes

Related articles

6 Simple Steps To Creating A Paperless Office

BlogBusiness Processes

How can you make the switch to a paperless office? Here are 6 simple steps to help your company make the dream a reality. Read our latest blog.

Read more

GDPR Compliance: One Year On, How Has Your Business Been Affected?

BlogBusiness Processes

Only a year ago, the long-awaited arrival of the European Union’s stringent GDPR final ended, and the business world would never be the same again. But now than the dust has settled, has the expected dramatic shake-up to data protection actually ha...

Read more

GDPR: Non-Compliant Businesses Facing First Fines

BlogBusiness Processes

It is now 6 months since the EU’s new data protection measures, the General Data Protection Regulation (GDPR), finally came into effect. But although May 25th had long been known as the deadline, there are still companies out there who are not yet ...

Read more

Data Protection in Hospitals: How To Rectify GDPR Failings In The Hospital Sector

BlogBusiness Processes

Not every sector has yet complied with GDPR. One of the biggest is the Hospitals Sector, with the Data Protection Commission highlighting 14 matters of concern it has found in hospitals. But while the situation is serious, some key steps are all that...

Read more

Why Maximizing Staff Awareness Is The Key To A Smooth GDPR Transition

BlogBusiness Processes

With D-Day fast approaching, full GDPR readiness should almost be complete. But does your staff really understand their role in the transition? Staff awareness is not only a key part of compliance, it can strengthen your organisation’s long-term po...

Read more

Data Protection Impact Assessments: What Are They and Why The GDPR Insists On Them

BlogBusiness Processes

With the GDPR around the corner, companies throughout Europe have had to re-examine both their business structures and practices. With the new regulations relating to data protection, Data Protection Impact Assessments are set to become compulsory. B...

Read more

5 Benefits Getting GDPR Ready Brings To Your Business

BlogBusiness Processes

For many business owners, the imminent arrival of the EU’s General Data Protection Regulations (GDPR) next year is something that is keeping them up at night. But initiatives associated with getting GDPR-ready are set to also bring real benefits to...

Read more

How CCTV Footage Has Become A Data Protection Matter

BlogBusiness Processes

CCTV used to be considered a solution to security issues. But in recent years, data protection legislation in both the UK and Ireland has reflected concerns over privacy and personal rights. Storing recorded security footage is now considered the s...

Read more

Why Storing Dark Data and Mining Its Secrets Benefits Businesses

BlogBusiness Processes

With a name that, alone, suggests it’s something no enterprise should want to keep, Dark Data is often a misunderstood presence in company servers. In fact, despite its ominous name, it is actually a highly-valuable asset, and storing Dark Data and...

Read more

The GDPR and Cloud Hosting

BlogBusiness Processes

For a while now, talk amongst the information technology community has been rife with conversation about the upcoming EU General Data Protection Regulation (GPDR). The legislation is to be finalised this year and will be effective from May 2018. The ...

Read more

Get in touch

Ireland
53 Park West Road
Dublin 12, D12 F8RK
T: +353 (0)1 438 0200

Connect with us

TwitterYouTubeInstagramLinkedInFacebookVimeo

  • Privacy Statement
  • Terms And Conditions
  • Sitemap

© Copyright 2023 Kefron. All Rights Reserved

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept All”, you consent to the use of ALL the cookies.

Cookie Settings Accept All
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
Save & Accept