ICO chief warns ministers against ditching GDPR safeguards

Keumars Afifi-Sabet/IT Pro

The freshly appointed Information and facts Commissioner, John Edwards, has signalled a doubling down on privacy and specific rights as the government plans to overhaul GDPR and exchange it with laws that “prioritise innovation”.

The authorities is in the throes of a public session on radically redrawing the UK’s knowledge security landscape in gentle of desires to “create a pro-growth” routine that favours “common sense” around “box-ticking”. Detractors have warned, even though, these proposals will erode the integrity of the layer of personal legal rights and protections ushered in with GDPR. 

Edwards, who arrived from New Zealand in January to provide at the helm of the Data Commissioner’s Business office (ICO), however, has doubled down on the need to have for any long term routine to regard citizens’ essential correct to privacy. 

This chief worry, he stated in his to start with public outing as Info Commissioner, trumps all other considerations. 

“The deep, authorized and cultural commitment to defend fundamental rights informs what comes subsequent for us in the UK,” Edwards instructed delegates at the IAPP Facts Protection Intense. “I see the alternatives for the UK to form its have legislation, and see a motivation in government to boost innovation. 

“I understand the totally smart intention of enabling company and authorities to derive a digital dividend and extract worth from info – but all of this will be constructed on a foundation that prioritises privacy.

“That cultural value of privacy has been reflected as I have met with organisations throughout the UK. Various sectors experience different problems, but I’ve heard a constant message of organisations being familiar with the worth of finding privacy correct.”

In his very long-anticipated speech, Edwards also continuously signalled the most important aspect of his solution would be preventing damage to individuals as a result of illicit business tactics, signalling, again, he would take critically the “British obsession with privacy”. 

Edwards struck a far more diplomatic tone in his first speech as Data Commissioner than previous reviews may perhaps have paved anticipations for. He as soon as explained Facebook, for instance, as “morally bankrupt pathological liars who help genocide (Myanmar), facilitate overseas undermining of democratic institutions”.

His championing of privacy legal rights to start with and foremost, nonetheless, immediately clashes with messaging from both ministers, and Office for Electronic, Society, Media and Activity (DCMS) officers, in current months, who have branded the latest routine unfit for purpose. 

In March very last yr, the then deputy director for facts method implementation and evidence, Phil Earl, explained the following Details Commissioner would need to have to proper the “imbalance” favouring privacy rights.

Ministers, too, have long witnessed GDPR as cumbersome for firms and anti-innovation. A endeavor force comprising hardline Conservative MPs past June introduced a report to Boris Johnson urging him to ditch the need for consent to course of action facts, as properly as the want for human oversight on AI decision-creating, for occasion. 

Substantially of this function has informed the first proposals DCMS has set out for session. Although the plans have been significantly watered down, they suggest eliminating the require to appoint a Details Defense Officer (DPO), and will also let organisations to accessibility personalized knowledge with better ease.

Notably, the former New Zealand privacy commissioner refused to be drawn into no matter if he agreed with the will need to overhaul GDPR in the to start with location, although somewhere else pressured though GDPR experienced its issues, he noticed it as a “how-to”, not a “don’t do”.

Based on discussions with DCMS officers, Edwards, on the other hand, is self-confident the proposals won’t erode privacy in the way that was first feared, nor would the new routine jeopardise the UK’s adequacy arrangement with the EU.

“Given DCMS has fully commited to preserving high specifications of safety, I battle to see how authorized protections will be fewer in Cardiff than is afforded to those people in Copenhagen,” Edwards said. 

“We are professional advisers and DCMS listens closely to what we have to say, and calibrates assistance to ministers as a outcome,” he continued. “There are facets of the session paper that we’re continuing to engage with DCMS on, continuing to consider to recognize the policy issue that ministers are making an attempt to handle, and delivering assistance about the implications and choices to instructed techniques.”

Some parts of this report are sourced from:
www.itpro.co.uk