Privacy chief fights UK-wide database

The UK's privacy tsar has made a plea to the government not to rush through a centralised database of all UK communications.

Speaking at the launch of the Information Commissioner Officer's Annual Report 2008 Information Commissioner Richard Thomas said the rumoured database of UK phone and internet communications would be "a step too far for the British way of life".

A database of all calls, emails and internet traffic, to be stored by the Home Office for at least 12 months, is thought to be included under proposals for "modifying procedures for acquiring communications data" in the draft Communications Data Bill.

silicon.com's Full Disclosure campaign - what we are asking for...

silicon.com wants the government to review its data protection legislation and improve the reporting of information security breaches in the public and private sectors.

We are calling for greater public debate and for the government to consider legislation that would require organisations that suffer information security breaches to alert their customers if there is a chance the breach has put individuals' sensitive personal data at risk.

We want to hear your views about this campaign and the issues it raises. Make your voice heard by leaving a Reader Comment below or emailing us at editorial@silicon.com.

The ICO's annual report also revealed it had issued nine enforcement notices for data protection breaches this year to bodies including Carphone Warehouse and Greater Manchester Police, and had carried out 11 prosecutions.

On Tuesday the ICO also served enforcement notices against the HMRC and the MoD following the departments' high profile data breaches.

Echoing concerns in the report, Thomas said in a statement: "There needs to be the fullest public debate about the justification for, and implications of, a specially created database - potentially accessible to a wide range of law enforcement authorities - holding details of everyone's telephone and internet communications."

Thomas said privacy was already being quietly eroded, citing examples of the expansion of the DNA database and the centralised collection and retention of data from automatic number plate recognition cameras.

Thomas said: "Before major new databases are launched careful consideration must be given to the impact on individuals' liberties and on society as a whole. Sadly, there have been too many developments where there has not been sufficient openness, transparency or public debate."

Both the MoD and the HMRC are now required to show steps they have taken to improve data protection compliance in response to the ICO enforcement notices.

The ICO received 24,851 enquiries and complaints concerning personal information in 2007/2008.