Premium Content

Access "DPA compliance not a black and white process"

Published: 13 Oct 2012

The problem with the Data Protection Act, from a practical point of view, and in contrast to US-originated compliance standards like PCI DSS, is that the DPA does not contain a list of detailed, specific requirements that every organisation can decide are either applicable or not applicable, and, if they are applicable, tick off as having been complied with. The problem with a tick box approach is that, where data security is concerned, one size definitely does not fit all. Threats evolve, and not all vulnerabilities are common. Compliance can be expensive and, if it is to be enforced, needs to be backed by an adequately resourced and aggressive regulator. The UK’s ICO is neither adequately resourced nor aggressive. However, it will pounce on obvious negligence, particularly in the public sector. The trick with the DPA, therefore, is to keep out of trouble, not to look for a detailed compliance checklist. Complying with the DPA is a process that can be broken down into three discrete stages. The first is simple: Do those things that the DPA specifically ... Access >>>

Access TechTarget
Premium Content for Free.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

What's Inside

Features

More Premium Content Accessible For Free

  • MPs give Post Office the cold shoulder
    CWE_161214_ezine_18p-MED.jpg
    E-Zine

    In this week's Computer Weekly we revisit sub-postmaster grievances with the Post Office's IT. Despite years of allegations that the Horizon ...

  • CEB 2015 IT Budget Benchmark Report
    CEB 2015 IT Budget Benchmark Report.jpg
    E-Handbook

    IT departments are set to increase their spending by 3.3%, the highest growth seen in five years, this research from the CEB reveals.

  • The most influential people in UK IT 2014
    CWE_091214_ezine_23p-MED.jpg
    E-Zine

    In this week's Computer Weekly, we unveil the 50 most influential people in UK IT for 2014, and interview the winner of our UKtech50 list, Unilever's...