UK Issues Encryption Guidance
The U.K. Information Commissioner's Office Tuesday published updated guidance on encryption for data protection officers and those in organizations with data protection responsibilities, saying it has seen many incidents where personal information was lost, stolen or subject to unauthorized access because of inadequate protection "or the devices the data was stored on being left in inappropriate places, or both."
Sign up for a free preview to unlock the rest of this article
Privacy Daily provides accurate coverage of newsworthy developments in data protection legislation, regulation, litigation, and enforcement for privacy professionals responsible for ensuring effective organizational data privacy compliance.
The guidance covers encryption in connection with the U.K. General Data Protection Regulation, and how it can be used in different contexts. Topics include information on encryption concerning data storage and encryption and data transfers.
Omitted from the guidance are end-to-end encryption, privacy-enhancing technologies, encryption and ransomware, and the potential impact of quantum computing, the watchdog noted.