The blunder happened when a recording app, which automatically records all calls, was rolled out in 2017. It was downloaded by 1,024 employees – many unaware their phones were logging calls. The app was supposed to be used as recording software by a small number of hostage negotiators to support kidnap and crisis negotiations.
But both forces chose to make it available for all staff to download on their work phones in 2017, which meant they continued to automatically record conversations for almost four years.
Yesterday the watchdog said it was highly likely that the app captured a large variety of personal data during these calls and the processing of some of this data was 'unfair and unlawful'.
So, a million pound fine is in the offing. But...
Stephen Bonner, ICO Deputy Commissioner, said: 'Sussex Police and Surrey Police failed to use people's personal data lawfully by recording hundreds of thousands of phone calls without their knowledge.
'The reprimand reflects the use of the ICO's wider powers towards the public sector as large fines could lead to reduced budgets for the provision of vital services.
'This case highlights why the ICO is pursuing a different approach, as fining Surrey Police and Sussex Police risks impacting the victims of crime in the area once again.'
So, basically, if you're in the public sector, you can get away with anything?
But - I wonder who would really be paying that million pound fine?
ReplyDeleteI am sure that lessons well be learned.
Stop laughing at the back!
Quite!
Delete