Majority of firms collect personal data, government report finds

Written by PublicTechnology staff on 19 May 2022 in News

Potential of data economy – and importance of protecting information – highlighted by study


The importance of data to the UK economy – and the need for organisations to effectively protect it – has been underscored in a report published by the government that found that the vast majority of businesses collect and use data of some kind.

Of the 4,500 companies surveyed, 81% said they handle digitised personal data, digitised non-personal data, or both, with the use of such information increasing 100% as businesses become larger. 

Around three quarters of businesses said they collect data from sources other than employees and, of those, 93% said the information comes from people volunteering information, for example if a new customer registers with them.

Non-personal data, such as sales or stock-level information, was also found to be common, with around half the survey’s respondents indicating that they generate that type of data.

Related content

The report, which was compiled on behalf of the government by market research company IFF Research, found that the use of data has become more prevalent in recent years and that most businesses have found using it to be beneficial.

“Around half the businesses that use digital data said that data had become more readily available in the last 10 years,” the report states. “We asked these particular businesses about the advantages this gave them and around half said that it had enabled them to innovate and perform new functions. An even larger proportion, around 60%, said that it had led to efficiency improvements.”

Any personal data collected, processed or used by businesses is subject to the requirements of the UK Data Protection Act of 2018, the enforce of which is overseen by the Information Commissioner’s Office. 

Since the data-protection regime was overhauled in 2018, the ICO has had the power to impose much bigger fines on organisations that breach the rules. Prior to the introduction of the new legislation, the biggest financial penalty available to the watchdog was a flat £500,000. 

The DPA provides for fines of up to £18m or 4% of the organisation in question’s global turnover – whichever figure is the larger. In 2020, the ICO hit British Airways and the Marriott hotel with respective penalties of £20m and £18.4m for failing to protect their customers’ data – and even these huge fines were a long way reduced from the originally proposed penalties of £183m and £99m. The reduction in the scale of the fines was attributed, in part, to the impact of the pandemic on the business of the two firms in question.


Share this page




Please login to post a comment or register for a free account.

Related Articles

Fraud challenges see HMRC and DWP named among ‘departments of concern’
27 May 2022

Public spending watchdog points to issues with controls on fraud and error

Supercharged: Inside the ONS plan to become a data-science 'powerhouse'
12 May 2022

Five years after being established, the Data Science Campus of the ONS wants to do more to help address government's biggest policy issues – while still retaining its innovative edge. ...

Cost-of-living crisis: ONS to explore web scraping data to track supermarket prices
4 May 2022

Agency’s dedicated data-science facility looks to make a big contribution to government’s response to rising costs

IPO clears patent backlog and claims digital services will help avoid future queues
22 June 2022

Long-standing to-do list was cleared by recruitment of staff and dedication of resources to focus on key technology areas