Continuing our celebration of thought leaders and innovators in the data privacy industry, we are delighted to release our 2nd interview in our recently announced TRUSTe Privacy Pioneers and Mavericks Series. David Smith, Deputy Commissioner of the UK’s Information Commissioner’s Office (ICO) sat down with TRUSTe’s Saira Nayak to gain his perspectives on data protection – both as a UK regulator and a member of the Article 29 Working Party – and to discuss those important incentives that underlie effective privacy protection for both consumers and businesses in all jurisdictions.
When asked about the UK’s approach to compliance with the Cookie Directive, he explained that
“you might call it a ‘risk-based approach.’ The extent of action we as an enforcement authority would take depends on the risk to privacy. The more risk that there is detriment to an individual including not just financial endangerment, but also emotional upset or distress, the more seriously the need for action becomes.”
So businesses should be taking the lead on doing the right thing instead of waiting on regulators to tell them what that is?
“That’s right. And the legacy will be that people do know more about cookies and they will have more control. It’s moving a measure of the control in the process back towards the individual, which can only be good for trust and confidence in the long term.”