Not fit for purpose (again)
After the Talk Talk paltry fine they are excelling themselves again.
"ICO took no action over 1,544 of the 2,048 cases reported to it in 2015-16"
So no fine or censure in 3/4 of cases?
Are we really meant to believe that only a 1/4 of those breaches were due to incompetence / inadequate security practices by the company involved in some way.
Until there is big financial punishment, many companies will only pay lip service to security.