What action we've taken in Q1 and what you can do to stay secure

Data security incidents, which are breaches of the seventh data protection principle or personal data breaches reported under the Privacy and Electronic Communications Regulations, are a major concern for those affected and a key area of action for the ICO. We have published this information to help organisations understand what we’re seeing and help them to take appropriate action.

What action we've taken in Q1

What you've reported to us


What you can do to stay secure

  1. Consider metadata when redacting information.
  2. Check all data has been redacted and is not reversible before releasing.
  3. Get someone to double check redactions.


Due to changes being made to the way we publish our trends reports, this is an abridged version of the detailed report. A full report of Q2's information will be available shortly.