John Ryan writes:
The data protection landscape in Ireland has evolved significantly in recent years. Not so long ago, it seemed an organisation could mislay customer information with impunity. There did not seem to be any major concern on behalf of the culprit organisation to put proper protection measures in place and there did not seem to be any to compulsion on them to do so.Philip Nolan, partner and head of commercial law at Mason Hayes and Curran, gave his view of the current legislation and codes of practice at a recent seminar held by Zinopy. In his view, the Irish security breach notification regime is changing and it will soon be compulsory for any personal data breach involving more than 100 records to be reported to the Data Protection Commissioner. A notification process may also have to be initiated by the data controller to inform the data subjects involved.
Read more on Silicon Republic.