Are you breaching your ongoing duty of care under the Data Protection Act?

£325,000 - the largest Civil Monetary Penalty issued to date by the Information Commissioner’s Officer (ICO) for breach of the Data Protection Act (DPA). It remains to be seen whether the UK Border Agency (UKBA) will also be fined in respect of the text messages it sent to individuals and which are allegedly in breach of the DPA. The UKBA is not alone; a 2012 case shows just how easy it can be to fall short of the obligations imposed by the DPA.

In Smeaton v Equifax at the High Court, it was found that Equifax — one of the UK’s three leading principal credit rating agencies — had breached its duty of care owed to Keith Smeaton under the Data Protection Act (DPA). The case serves as a reminder of how easy it can be to fall short of obligations imposed by the DPA and why it is crucial to keep on top of record-keeping to avoid a sizeable compensation claim…

If you are registered and logged in to the site, click on the link below to read the rest of the Shoosmiths briefing. If not, please register or sign in with your details below.

Briefings from Shoosmiths

View more briefings from Shoosmiths

Analysis from The Lawyer

  • Hester: declined bonus worth almost £1m

    Pay checks

    Compliance and corporate governance codes for large financial institutions will undoubtedly include provisions to regulate high pay in the future

  • high street 150

    Focus: Alternative business structures - Law and new order

    There’s more to the ABS model than attracting the man in the street and procuring external investment. Partners at the big corporate firms, take note…


2 Colmore Square
38 Colmore Circus Queensway
B4 6BJ

Turnover (£m): 87.00
No. of Lawyers: 373