UK businesses not confident about compliance with data protection laws and concerned for the costs involved, but vast majority think rules should be tougher

About 50% of UK businesses think the UK’s data protection laws should be tougher, and 87% want anyone disclosing sensitive data to be required to reveal that fact. That is according to a survey of 1,200 UK businesses by Sophos, the IT security business. Meanwhile, despite the survey showing a desire for the laws to be tougher, 36% of the respondents admitted to being concerned about extra complexity caused by further data protection laws, and 30% cited extra costs as a concern. Roughly a third said they were confident that their organisation complied with data protection laws, a third thought they did not comply, and the rest simply did not know.

Paul Gershlick, a Partner at Matthew Arnold & Baldwin LLP and editor of Upload-IT, comments: ‘This survey shows that most people think data protection laws should be tougher, whilst most also do not have confidence that they are complying with existing laws, and many are concerned by the cost and complexity involved. An interesting mix! This survey comes after the UK has recently introduced much stricter penalties of up to £500,000 for data protection breaches, the European Commission has given the UK Government a two month ultimatum to toughen up its data protection laws, and the Government is asking for comments on data protection laws. To take part in the Government’s information gathering exercise, go here: http://www.justice.gov.uk/call-for-evidence-060710.htm.’