On October 27, 2020, the UK Information Commissioner’s Office (“ICO”) published a report following its investigation into data protection compliance in the direct marketing data broking sector, alongside its enforcement action against Experian. During the investigation, the ICO conducted audits of the direct marketing data broking businesses of the UK’s three largest credit reference agencies (“CRAs”) – Experian, Equifax and TransUnion – and found “significant data protection failures at each” that were “deeply embedded” within the businesses.
Data broking involves collecting and combining personal data from various sources and selling or providing access to this aggregated data to other organizations. The data may take the form of lists of individuals’ names and contact details, or more detailed profiles about individuals, including information such as their preferences and habits. The ICO’s investigation focused specifically on “offline” marketing services, such as postal, telephone and SMS marketing.
As part of the ICO’s work prior to the implementation
Article source: https://www.natlawreview.com/article/ico-publishes-report-compliance-direct-marketing-data-broking-sector
Recent Comments