European Data Protection Digest

Experts Weigh In on Required Breach Disclosures

PRIVACY LAW—UK

October 28, 2011

Referencing the announcement of U.S. disclosure obligations for companies in that country, a Computing report points to "increasing signs that the UK will have to implement similar rules under proposed changes to the EU Data Protection Directive." Posing the question of whether such a requirement would be welcome in the UK, the report looks at the differing views of IT experts. One, for example, suggests similar rules "should be advocated by the UK government. At present there is virtually no obligation for UK companies to disclose anything." Another, however, suggested that when it comes to reporting, "The first time you have a data breach people get overexcited; the next time you get data breach fatigue."
Full Story