Record fine for data protection breach

A record fine imposed by the Information Commissioner's Office (ICO) sends a strong message to businesses of the importance of keeping personal data secure, especially financial information. The ICO issued a £400,000 monetary penalty notice to TalkTalk Telecom Group plc for failing to keep personal data secure. The ICO’s investigation found that TalkTalk had failed to have appropriate security measures in place, which could have prevented the cyberattack.

This checklist highlights the key legal obligations that a business should consider when dealing with personal data about customers, suppliers, employees or any other individual who may be encountered during the course of business.