Plans to be more open and transparent about the way the U.K.’s Information Commissioner conducts investigations and fines companies for data privacy breaches should provide businesses with greater clarity about enforcement, but experts say there also needs to be more detail about how the regulator will prioritize cases.
The U.K.’s data regulator launched a consultation on October 31, calling for views on its proposed guidance about the way it selects and handles investigations and enforcement in cases where the Data Protection Act or the U.K. General Data Protection Regulation (GDPR) may have been infringed.
