Category: ICO

Direct marketing advice generator makes it easy for organisations to comply with the law

We have launched a free online tool to help organisations ensure their direct marketing activities comply with UK law – namely the Privacy and Electronic Communication Regulations (PECR), and the UK GDPR. By using the direct marketing advice generator, small organisations will get reliable compliance advice, tailored to their own direct marketing activities, in minutes. This allows organisations to reach out and promote their products and services to both new and existing customers, as well as share their aims and ideals – and can assist in making sure they’re contacting…

Debunking data protection myths about AI

Sophia Ignatidou, Group Manager for AI Policy From unlocking medical breakthroughs to revolutionising public services in the UK, AI has huge potential to transform our lives for the better. Across the economy, businesses seem excited about investing in AI to drive growth and innovation, while the tech is inspiring vibrant discussions amongst policymakers and the public alike. Earlier this month, the Government committed to fast-tracking AI adoption in a new ambitious action plan. AI is really at the top of everyone’s agenda this year – including ours. My team has…

ICO response to government on economic growth

The Prime Minister, the Chancellor, and the Business Secretary wrote to the Information Commissioner (along with 16 other regulators) at the end of December asking for proposals to boost business confidence, improve the investment climate, and foster sustainable economic growth. The ICO takes its duty to promote growth very seriously and, as a key regulator for the UK’s digital economy, one of our strategic enduring objectives, set out in our ICO25 strategic plan, is to empower responsible innovation and sustainable economic growth. Data protection and information rights are essential building…

Our strategy for levelling the playing field for online tracking in 2025

Stephen Almond is the ICO’s Executive Director of Regulatory Risk. Online tracking is a part of everyday digital life. It enables personalised advertising, funds many free services and shapes our online experiences. But when it isn’t done responsibly, harm can occur. For example, gambling addicts may be targeted with betting ads based on their browsing record – with no easy way to block them. People’s sexuality, beliefs, health and location may be identified, causing unwanted disclosures. A growing number of businesses have recognised this, and we at the ICO have…

ICO takes action to tackle cookie compliance across the UK’s top 1,000 websites

ICO reviewing cookie usage on biggest UK sites 2025 strategy launched to ensure online tracking gives people “clear choices and confidence in how their information is used,” New guidance on ‘consent or pay’ models published We have today announced plans to bring the UK’s top 1,000 websites into compliance with data protection law. We have already assessed the compliance of the top 200 UK websites and communicated concerns to 134 of those organisations, setting out clear regulatory expectations that organisations must comply with the law by giving people meaningful choice…

Company fined £200,000 for instigating unlawful loan promotion nuisance texts

Company directors knowingly facilitated unlawful activity for financial gain- Affiliate used 459 different telephone numbers capable of sending up to 546,000 text messages a day- ICO received nearly 38,000 complaints We have fined West Sussex-based company ESL Consultancy Services Ltd (ESL) £200,000 for knowingly instigating unlawful loan promotion nuisance text messages being sent to people who had not consented to receive them. ESL came to our attention through a separate investigation into Daniel George Bentley, an affiliate marketer and lead generator. During the investigation, Bentley set up Taipan Trading Ltd…

Statement in response to AI Action Plan

Stephen Almond, Executive Director for Regulatory Risk at the ICO, said: “AI has huge potential to transform businesses and public services, which is why it is a priority area for the ICO. Data protection is essential to realising this opportunity and ensuring that the public can have trust in AI. As a whole economy regulator, we are committed to supporting organisations to innovate and grow responsibly while upholding people’s rights and freedoms. “To provide businesses with the certainty they need to innovate safely, we have already published detailed guidance on…

New year, new start-ups – get data privacy right from the start

We’re encouraging entrepreneurs to think about data protection as they make plans to launch their new business ventures this January, ahead of the new tax year. The Information Commissioner’s Office (ICO) is the UK regulator for information rights. We empower all organisations to use people’s information responsibly and confidently and provide proactive guidance and practical tools to help organisations get it right.  Where better place to start than our beginner’s guide to data protection – here you’ll find eight easy steps to get you started on your data protection journey…

Celebrating twenty years of Freedom of Information

John Edwards – The Information Commissioner Transparency and accountability are fundamental to our democracy – the impact of decisions made by public bodies can affect us all in some way. So it is right that we celebrate twenty years of the Freedom of Information Act (FOIA) coming into force this year, as well as twenty-five years since this crucial legislation, which underpins people’s constitutional and legal right to request information, was passed by parliament.  As the regulator of the FOIA, we provide guidance to the public to help them make…

New year, new you – 2025 is the year to tighten up your data privacy

Did you know:  In 2024, staff at the ICO answered 278,637 calls, as well as responding to 65,503 live chat messages. People contacted us for a number of reasons, but our most common complaint was regarding nuisance calls – of which we received 44,404! To reduce spam calls, we advocate signing up to the TPS – the UK’s “do not call” list. This year to date, 16,898,518 numbers are now registered.  We completed 36,049 data protection complaints and 7,448 Freedom of Information complaints. We also conducted and completed 179 investigations,…