The Information Commissioner independently upholds the information rights of citizens in the UK, and is able to enforce sanctions where breaches of regulation occur. These parts of the bill outline the functions of the Information Commissioner in accordance with data protection law, and her powers of enforcement including powers of entry and inspection.
The Bill will:
- Retain the Information Commissioner as the UK’s independent data protection regulator.
- Place a duty on data controllers to notify the Commissioner as well as individuals concerned of data breaches that risk affecting individuals’ rights.
- Increase maximum penalties for regulatory breaches from £500K to £18m.
- Create new offences to deal with emerging threats.