ICO fines less than one per cent of DPA breaches
Despite having the power to punish organisations who flout data protection laws, the ICO hands out fines to less than one per cent.


Despite the FoI request showing three breaches in the private sector for every two in the public domain, only seven enterprises had been pulled up with just one fined compared to 29 publicly funded organisations with three fined.
It also showed the one private sector fine given to A4e to be the smallest doled out so far, standing at 60,000.
"The ICO has stated that the private sector has a worse grasp of the data protection act than the public," added McIntosh. "However, the ICO's actions so far do not seem to encourage any improvement."
"For example, other organisations can easily look at the 60,000 penalty meted out to A4e, its size compared to the company's 145 million turnover, its rarity and the fact that A4e is still receiving plenty of business, from the Government no less, and feel that the risk of ICO action is one they are prepared to take"
He continued: "This is in direct comparison to the public sector, which dutifully reports its failures under the data protection act and receives more, and larger, penalties as a result, simply resulting in funds being moved around the public sector away from the organisations using them."
We asked for a response to these issues from the ICO but it had not responded to our request at the time of publication.
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
Jennifer Scott is a former freelance journalist and currently political reporter for Sky News. She has a varied writing history, having started her career at Dennis Publishing, working in various roles across its business technology titles, including ITPro. Jennifer has specialised in a number of areas over the years and has produced a wealth of content for ITPro, focusing largely on data storage, networking, cloud computing, and telecommunications.
Most recently Jennifer has turned her skills to the political sphere and broadcast journalism, where she has worked for the BBC as a political reporter, before moving to Sky News.
-
The NCSC wants developers to get serious on software security
News The NCSC's new Software Security Code of Practice has been welcomed by cyber professionals as a positive step toward bolstering software supply chain security.
-
Citrix wants to help enterprises dodge pricey hardware costs
News Tariffs could push up hardware costs in the coming months - Citrix wants to ease the pressure
-
TikTok to open first European data centre in Ireland
News The move could signify a desire to shift its operations away from the US as well as secure its position in the European market
-
MPs in a muddle over GDPR and storing voters' personal data
News Labour MP Chris Bryant says his staff were told to delete constituents' data
-
Trump resort will not be charged for breaching data laws
News Presidential hopeful's Scottish golf course failed to register under the Data Protection Act for four years
-
Banks urged to share data but warned over security
News Experts voice concern over security of open API recommendations
-
EU centralises European open data through one portal
News Open Data Portal will enable public sector bodies to share information
-
Experts question sheer scale of data storage required by Snooper's Charter
News Who will foot bill for physical infrastructure to house UK's browsing histories?
-
Snapchat's T&Cs update could put user data at risk
News Kaspersky said giving the service permission to share pictures with third parties could lead to a serious breach of privacy
-
Transport Systems Catapult launches data sources catalogue
News Intelligent Mobility Data Index could push forward smart transport innovation in the UK