By Shannon Ballard
Most notable to DHS staff was the work of the Cabinet Office and its authority over data protection in the public sector. Reacting to a series of high-level public sector breaches, in June 2008 the Cabinet Office issued a Data Handling Report that sets forth requirements for mandatory accountability within central government agencies. Central government agencies must compile systems inventories and conduct Privacy Impact Assessments for projects requiring new procurements. The report also makes training mandatory for those with access to protected personal information or involved in its management.
The exchange was extremely useful for understanding data protection oversight for the public sector in the UK, and especially in the law enforcement and national security area. This was the third in an ongoing series of international exchanges—previously, the DHS Privacy Office hosted experts from the Spanish Data Protection Authority and the Office of the Canadian Privacy Commissioner. More will follow in 2009.