ComputerWeekly.com
Premium Content

Access "DPA compliance not a black and white process"

Published: 13 Oct 2012

The problem with the Data Protection Act, from a practical point of view, and in contrast to US-originated compliance standards like PCI DSS, is that the DPA does not contain a list of detailed, specific requirements that every organisation can decide are either applicable or not applicable, and, if they are applicable, tick off as having been complied with. The problem with a tick box approach is that, where data security is concerned, one size definitely does not fit all. Threats evolve, and not all vulnerabilities are common. Compliance can be expensive and, if it is to be enforced, needs to be backed by an adequately resourced and aggressive regulator. The UK’s ICO is neither adequately resourced nor aggressive. However, it will pounce on obvious negligence, particularly in the public sector. The trick with the DPA, therefore, is to keep out of trouble, not to look for a detailed compliance checklist. Complying with the DPA is a process that can be broken down into three discrete stages. The first is simple: Do those things that the DPA specifically ... Access >>>

Access TechTarget
Premium Content for Free.

By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

What's Inside

Features

More Premium Content Accessible For Free

  • The future of Moore's Law at 50
    CWE_210415_ezine-MED.jpg
    E-Zine

    In this week's Computer Weekly, Moore's Law – the seminal forecast by Intel founder Gordon Moore that oversees technology development – is 50 years ...

  • No more excuses: VDI is ready!
    BriForum-VDI-252.jpg
    E-Handbook

    There are a lot of reasons to avoid implementing VDI. Access this e-guide with advice from desktop virtualisation expert Brian Madden who directly ...

  • Taking stock of e-commerce systems
    CWE_140415_ezine_25p-MED.jpg
    E-Zine

    In this week's Computer Weekly, the first of our three-part buyer's guide to next generation e-commerce looks at managing inventory in multi-channel ...