• Skip to primary navigation
  • Skip to main content
  • Skip to footer
The Evolution of ESG RegulationThe Evolution of ESG RegulationThe Evolution of ESG Regulation

CUBE global

  • Products
        • RegPlatform product overviewOur enterprise product, providing regulatory intelligence for large, global financial institutions looking to tackle complex compliance.
        • RegAssure product overviewOur highly intuitive, seamless compliance product, that grows with your small or medium sized business.
        • CUBE's technology
  • Solutions
        • PrivacyGlobal governance for data privacy regulations, the world over
        • RecordsHolistic oversight of ever-growing regulations for records
        • CybersecurityAutomated workflows for up to date, relevant data on cyber
        • Technology riskEffective policies and controls to mitigate technology risk
        • Financial crime and AMLWatertight audit trails to show risk-based rationale
        • View all solutions
  • Resources
        • Resource hubLifting the lid on financial services, compliance, and regulation
        • Read

        • Case Studies
        • Blog posts
        • Reports
        • RegNews
        • Brochures
        • Find

        • Compliance Corner
        • Compliance confessions
        • ESG Conference
        • CUBE’s regulation game
        • Listen

        • Videos
        • Webinars
        • Podcasts
  • Partners
        • Advisory and consulting partnersEnhance your regulatory compliance offering with the entire suite of CUBE regulatory data.
        • Integration partnersCompliance is complex enough without over-complicated integration procedures.
        • Technology partnersAdd value to existing customer applications with a unified window into regulatory intelligence.
        • Partners overview
  • About us
        • About usThe story of who we are, how we got here and why we’re exceptionally proud of what we do
        • TeamThe visionaries and leaders powering CUBE’s success
        • NewsThe latest news from CUBE
        • CareersOur movement to transform regulatory data into regulatory intelligence
        • ContactWant to know more? Get in touch
  • Request a demo
Customer login
Home » Resources » Information Commissioner’s Office (ICO): an overview

Estimated reading time: 3 minutes

What is the Information Commissioner’s Office (ICO)?

The Information Commissioner’s Office is the UK’s leading institution that is dedicated to upholding the information and data rights of British citizens. It’s a non-governmental institution that focuses on data privacy and protection in particular. With backing from the UK government, the ICO proposes and oversees data privacy and related legislation in the public’s interest. The ICO is most known for its role in enforcing the EU’s General Data Protection Regulation (GDPR).

Why does the ICO exist?

Data privacy is one of the foremost issues of the 21st century. With much of the modern economy shifting towards online environments, data has become a vital asset and a commodity as (if not more) valuable than oil. While innovation and technology is hugely beneficial, the immense volumes of data created can pose risks if not managed correctly. It is with that in mind that the ICO regulates companies to protect the data rights of individuals. The Information Commissioner’s Office (ICO) is among the global leaders in data privacy regulations. With proactive regulatory work, the ICO set the standard for regulations for much of Europe.

A brief history

The ICO was established in 1984 with just ten people, who focused on data protection. The lead executive was Eric Howe, formally recognized as the Data Protection Registrar. Howe quickly introduced the Data Protection Act of 1984. Over the next few decades, the ICO’s influence and power increased substantially and they established a precedent of enforcement against non-compliant actors.

Today, the ICO employs over 500 staff members and handles hundreds of thousands of data complaints each year. Regulatory fines can be well into the millions for companies who fail to comply.

Key activities of the ICO

  • Introducing data legislation: The ICO is the prominent institution in the UK that crafts data legislation on behalf of its citizens.
  • Receive and investigate complaints: Both UK citizens and businesses can send data-related complaints to the ICO. If the ICO receives a significant amount of complaints, they will launch an investigation and take necessary steps.
  • Corrective actions: The ICO can penalize organizations that violate the data rights of British citizens. The corrective actions that the ICO can take come in the form of fines, legal investigations and potentially shutting down of operations in the UK.

Who must comply?

UK businesses and organizations

Businesses and organizations based in the UK are the first category of entities that are subject to ICO compliance. Since UK-based entities have the vast majority of their customer base in the UK, they are far more likely to deal with ICO regulations.

Global companies with UK customers

The vast majority of companies with any UK presence, online or offline, have heard of GDPR. The ICO is the principal institution behind GDPR, so companies should be familiar with ICO. Virtually any company that interacts with data from UK based users are liable to ICO compliance. This means if UK users can access your website, you need to be compliant with ICO guidelines.

Related resources
View all articles
Lightbulbs
Compliance Corner

Fintech vs Regtech: what is the difference?

Image shows a hand at a cash machine, typing in their pin.
Compliance Corner

What is the Bank Secrecy Act?

All about the California Consumer Privacy Act
Compliance Corner

California Consumer Privacy Act 2023 Update

Horizon scanning for regulatory change management
Compliance Corner

What is horizon scanning in the compliance and regulatory world?


Want CUBE updates and latest industry news sent straight to your inbox?

Footer

Add CUBE logo here

  • Products
    • Partners
    • Solutions
  • Resource hub
    • Blogs
    • Reports
    • Brochures
    • Compliance Corner
    • Webinars
    • Podcasts
    • Videos
  • Behind CUBE
    • About us
    • Meet the team
    • Careers
    • News US
    • Contact us
  • The legal bits
    • Privacy policy
    • Cookie policy
    • Terms of use
    • Accessibility
Follow us:
  • LinkedIn
  • Twitter
  • YouTube

© 2023 CUBE Content Governance Global Limited

  • English
  • US