Updated: Apr 13, 2020
This article’s original source was the ICO blog and it was dated prior to GDPR being enforced.
A court order was executed at a property in London as a feature of an examination concerning the unlawful access of client details from an across the nation vehicle repair organization.
The Information Commissioner’s Office (ICO), which completed the inquiry, accepts individuals’ data was unlawfully exchanged and could be connected to some of them getting nuisance calls.
Mike Shaw, ICO Enforcement Manager, stated:
“Our experience shows that unscrupulous people access personal data about car accidents to sell it on to marketing firms, who use the details to make nuisance calls.
“This is against the law and exploits people’s right to have their personal details respected. It also fuels the industry behind the nuisance calls so many of us are bombarded with.
“We searched this house to gather more evidence as we have reason to believe that a person living at this address has illegally accessed personal information.”
ICO incited by concerns raised by Nationwide Accident Repairs Services (NARS).
NARS disclosed to ICO examiners that a computer it uses had been unlawfully used to see vehicle fix estimates which contained PII. The person of interest to the court order completed today was not a present representative of NARS.
It isn’t illegal to sell information records, yet the information probably been acquired legitimately and those selling it must have consent/approval privilege to sell it on.
Unlawfully getting or getting to individual information is was previously a criminal offence under segment 55 of the Data Protection Act 1998. Since May 2018 it is now governed by GDPR.
The offence is deserving of a method for a fine issued by the courts. The ICO keeps on calling for increasingly powerful impediment sentences, including the risk of jail, to be accessible to the courts to stop the unlawful utilization of personal information.