Digital contact tracing firm fined by ICO over breach of data laws

Written by Sam Trendall on 19 May 2021 in News

Watchdog says most companies kept within the law

Credit: Pixabay

A firm established last year to provide businesses with digital contact-tracing services has been fined by the Information Commissioner's Office for breaching data laws.

Based in St Albans, Ltd was incorporated in June 2020. The NHS Covid-19 app did not launch until late September and, during last summer and autumn, the firm was one of many external providers that allowed businesses around the country to display QR codes that could be scanned by customers for the purposes of contact-tracing. 

Having assisted in gathering personal data of citizens, the Hertfordshire company then broke data-protection laws by sending them – without adequate consent – about 84,000 marketing emails between September and November, according to the ICO.

Related content

The regulator has fined the company £8,000 for doing so.

The ICO claimed that it has also engaged with a range of other commercial QR code providers that have supported businesses during the pandemic “to ensure they were also handling people’s personal information properly”.

“The checks, which took place over the past six months, found that most of the companies understood the relevant laws and the importance of processing personal data fairly and securely,” the watchdog added. “ICO experts also met with some of them to help improve their practices.”

As the economy begins to open up and more contact-tracing info is gathered, businesses unsure of their obligations can turn to ICO guidelines, which advise them to store data no longer than 21 days, and not to use it for any marketing purposes.

Firms are also encouraged to “adopt a data protection by design approach from the start when they develop new products… [and to] make privacy policies clear and simple so that people understand how their information will be handled”. 


About the author

Sam Trendall is editor of PublicTechnology


Share this page




Please login to post a comment or register for a free account.

Related Articles

‘Disappointing’ – Cabinet Office rejects MPs’ recommendations for FOI-vetting unit
13 July 2022

Parliamentary committee had called for more transparency and data of mysterious team

‘This lack of transparency could undermine trust’ – DWP scolded over failure to publish research data
21 June 2022

Parliamentary committee writes to department urging greater openness

Police investigated 4,300 cyber offences last year – but charged fewer than 100 criminals
12 August 2022

The proportion of offences resulting in a formal charge increased slightly, but remains at barely more than one in every 50

Energy costs: Government plans upgrades for financial support and advice portal
12 August 2022

Online platform from BEIS aims to provide a unified service through which citizens can check eligibility for government support