Information Commissioner's Office
Statement on an agreement reached between Somerset Bridge Insurance Services Limited and the ICO
In February 2019, the Information Commissioner imposed a monetary penalty notice against Somerset Bridge Insurance Services Limited (formerly, and at the relevant time, Eldon Insurance Services Limited) in the sum of £60,000 for a breach of the Privacy and Electronic Communications (EC Directive) Regulations 2003. An enforcement notice and assessment notice were also imposed. Somerset Bridge Insurance Services Limited appealed the notices. Following discussions between the parties, Somerset Bridge Insurance Services Limited has, as a pragmatic compromise, agreed to withdraw its appeal against the monetary penalty notice and enforcement notice. Somerset Bridge Insurance Services Limited will pay the penalty sum of £60,000 without admission of liability and has agreed to a consensual audit of its data protection practices. The Information Commissioner has, in turn, agreed to cancel its assessment notice.
In the time since the imposition of the penalty notice in February 2019, Somerset Bridge Services Limited has undergone a number of changes, including a change in ownership and its management team. Somerset Bridge Services Limited has also conducted a review of its data protection compliance, which resulted in the implementation of amended policies and practices, particularly in relation to its marketing activities. The ICO will carry out a consensual audit of Somerset Bridge Insurance Services Limited's direct marketing and general data protection governance structure and processes in the coming months.
Somerset Bridge Insurance Service Limited recognises its duty of cooperation with the ICO and the vital importance of protecting personal information, and is robustly committed to upholding the data protection rights of its customers moving forward.
You can find further information about the background to this case and the ICO’s previous investigation into the use of data analytics for political purposes on the ICO website.
Notes to Editors
- The Information Commissioner’s Office (ICO) upholds information rights in the public interest, promoting openness by public bodies and data privacy for individuals.
- The ICO has specific responsibilities set out in the Data Protection Act 2018, the UK General Data Protection Regulation (GDPR), the Freedom of Information Act 2000, Environmental Information Regulations 2004 and Privacy and Electronic Communications Regulations 2003.
Original article link: https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2022/02/somerset-bridge-insurance-services-statement/
Latest News from
Information Commissioner's Office
“A crucial learning experience.” - ICO calls for highest standards in HIV services after NHS Highland reprimand31/03/2023 10:15:00
The Information Commissioner’s Office (ICO) has issued a reprimand to NHS Highland for a “serious breach of trust” after a data breach involving those likely to be accessing HIV services.
ICO statement on the High Court ruling about the immigration exemption in the Data Protection Act 201830/03/2023 12:20:00
The High Court has ruled that the immigration exemption in the Data Protection Act 2018, as currently drafted, is still unlawful and must be made clearer.
Blog: Director’s Update – celebrating success and challenging ourselves for the future29/03/2023 14:10:00
Blog posted by: Warren Seddon, 28 March 2023.
ICO to prioritise Freedom of Information complaints with significant public interest29/03/2023 09:10:00
The Information Commissioner’s Office (ICO) has announced a new approach to prioritise complaints made under the Freedom of Information Act (FOIA) where there is significant public interest.
ICO takes action against Lewisham Council for failing to respond to hundreds of Freedom of Information requests22/03/2023 15:05:00
The Information Commissioner’s Office (ICO) has issued an enforcement notice to the London Borough of Lewisham Council for failing to respond to hundreds of overdue requests made under the Freedom of Information Act (FOIA) 2000.
ICO reaches agreement with Easylife Ltd17/03/2023 10:25:00
Update: This press release has been updated to reflect the fact that Easylife Ltd were fined for breaching the GDPR, as opposed to the Data Protection Act 2018
ICO issues reprimand to the Metropolitan Police Service for inadequate handling of files related to organised crime groups16/03/2023 16:10:00
ICO statement on Government response to Sir Patrick Vallance’s Pro-Innovation Regulation of Technologies Review16/03/2023 11:05:00
Yesterday, Wednesday 15 March, the Government has published its response to Sir Patrick Vallance’s Pro-Innovation Regulation of Technologies Review.