• Public affairs Home
• Submissions to government
• Consultations in progress
• Archive of submissions
• Sector panels and expert groups
• Dispute resolution service
• Contacts

Policy Submissions

Description

Abstract

The IET has been unable to find any authoritative guidance on the technical measures that should be adopted to identify various classes of personal information and to protect them appropriately. Unless the security requirements are made clear at the start of a project, it is impossible to design security policies and a security architecture that will be both adequate and cost-effective. The Data Protection Strategy should be updated to include a commitment to publish guidance on how to assess the sensitivity of personal data that is held, and the standards that should apply to IT systems that hold such data.

Submission Details Submitted on 28 September 2007 to Information Commisisoner's Office (ICO)

View more details of this submission