Information Commissioner's Office
ICO fines company £130,000 for unauthorised pensions cold calls
The Information Commissioner’s Office (ICO) has issued a fine under a law brought in to stop scammers defrauding people out of their pensions.
Swansea company CPS Advisory Ltd was fined £130,000 for making more than 100,000 unauthorised direct marketing calls to people about their pensions.
The law changed in 2019 to limit who can call people about their pensions.
Andy Curry, ICO Head of Investigations, yesterday said:
“Unwanted pension calls can cause real distress and even significant financial hardship to often vulnerable people, who can end up losing their hard-earned pension pot to scammers.
“This company clearly flouted the law when they should have known better. Businesses making direct marketing calls are responsible for understanding their responsibilities under the legislation, ignorance is no excuse.”
Under the new law, companies can only make live calls to people about their occupational or personal pensions if:
- the caller is authorised by the Financial Conduct Authority (FCA), or is the trustee or manager of an occupational or personal pension scheme, and
- the recipient of the call consents to calls, or has an existing relationship with the caller.
The change to the Privacy and Electronic Communications Regulation (PECR) which covers marketing calls, phone and texts in January 2019, was to prevent people falling victim to scams, most of which are carried out through nuisance calls, and potentially losing their pensions.
The Economic Secretary to the Treasury, John Glen, yesterday said:
“Pensions cold calls are the most common method used to initiate pension scams, which can rob people of their hard-earned savings and ruin lives. That’s why we banned them. Today’s fine should act as a warning to others that pensions cold calling is unacceptable, and those found flouting the rules will be held to account.”
Under the PECR, businesses and their officers can face a fine of up to £500,000 from the ICO.
During its investigation, the ICO found that between 11 January 2019 and 30 April 2019, the company had made 106,987 calls to people without lawful authority.
The ICO found that the company was not a trustee or manager of a pensions scheme, was not authorised by the FCA and the evidence that it provided did not satisfy the ICO that valid consent had been obtained.
The Information Commissioner decided that this represented “a significant intrusion into the privacy of the recipients of such calls”.
- The Information Commissioner’s Office upholds information rights in the public interest, promoting openness by public bodies and data privacy for individuals.
- The ICO has specific responsibilities set out in the Data Protection Act 2018, the General Data Protection Regulation (GDPR), the Freedom of Information Act 2000, Environmental Information Regulations 2004 and Privacy and Electronic Communications Regulations 2003.
Latest News from
Information Commissioner's Office
Blog: Data protection considerations and the NHS COVID-19 app21/09/2020 15:38:00
Information Commissioner Elizabeth Denham talks about the regulatory work the ICO has been involved in regarding the England and Wales NHS COVID-19 app.
Data protection guidance for collecting customer information21/09/2020 12:25:00
The Information Commissioner’s Office (ICO) has published data protection guidance for organisations mandated to collect customer and visitor information.
Accountability Framework: demonstrating your compliance14/09/2020 10:15:00
Ian Hulme, Director of Regulatory Assurance discusses the launch of our new Accountability Framework and how organisations can take part in the next stage of its development.
Blog: Ten top tips for innovators09/09/2020 09:10:00
ICO are always looking for new and innovative ways to offer advice and support to any businesses involved in data protection because it is imperative that consumers who share their personal data with your organisation are confident that this data will be treated fairly, lawfully and transparently.
ICO’s Children’s Code will help protect children online02/09/2020 10:45:00
A statutory code requiring organisations to provide better online privacy protections for children comes into force today, triggering the start of a 12 month transition period.
2020 Annual Track survey results27/08/2020 15:10:00
As the UK economy adjusts to the impact of COVID-19, it has never been more important for organisations to understand what their customers want and expect.
Children’s privacy and data sharing in focus as ICO regulatory sandbox re-opens20/08/2020 14:10:00
The ICO is re-opening the regulatory sandbox, its free service, designed to support organisations using personal data to develop innovative products and services.
Statement in response to trial of NHS Test and Trace app14/08/2020 16:20:00
ICO Statement given yesterday in response to trial of NHS Test and Trace app.