UK Watchdog Advises on Avoiding Publication of Personal Data in Access Requests
Personal information in documents released in response to data subject access or Freedom of Information requests can be accidently disclosed, sometimes with serious impacts, if it's not properly checked, the U.K. Information Commissioner's Office (ICO) said Thursday.
Sign up for a free preview to unlock the rest of this article
Privacy Daily provides accurate coverage of newsworthy developments in data protection legislation, regulation, litigation, and enforcement for privacy professionals responsible for ensuring effective organizational data privacy compliance.
Its guidance on avoiding unintended data breaches includes practical steps and videos to help organizations understand how to check documents for hidden personal data, the watchdog said. The guidance replaces an advisory notice issued after high-profile breaches in 2023.
Among other topics, the guidance covers how to decide on an appropriate format for disclosing data to the public, how to find hidden information in worksheets and metadata, and how to review the circumstances of a breach to prevent it from reoccurring, the office said.
Given serious data breaches, including at the Police Service of Northern Ireland and the Ministry of Defence, "this crucial step cannot be missed," said ICO deputy Commissioner Emily Kearney.