ICO and NCA sign memorandum of understanding to jointly support victims of cybercrime

The Information Commissioner's Office (ICO) and the National Crime Agency (NCA) are joining forces to better support UK-based organisations that fall victim to cyberattacks.

The UK Data Protection Authority has signed a Memorandum of Understanding (MoU) with the NCA, in which both parties commit to taking action to help organisations across the UK protect themselves from data-stealing cybercriminals.

Among the commitments contained in the MoU is a promise that the NCA will “never disclose any confidential information” of an organisation to the ICO without first obtaining appropriate consent.

The MoU also includes a commitment from the ICO to share data. The ICO promised to support the NCA's “visibility” into UK cyberattacks by providing it with information on an “anonymised, systematic and aggregated basis” to assist it in its work to protect the public from cybercrime.

“If the ICO and NCA are both involved in a cyber incident, [the parties] will endeavour to mitigate an organisation’s mitigation and mitigation efforts and to minimise disruption,” the two parties said in a statement.

“The ICO and NCA will work together to promote learning, provide consistent guidance and improve standards in cyber-related matters.”

The parties also said their cooperation will ensure that organisations receive more precise and clear instructions on who to report cybercrime cases to and that they feel “empowered” to do so as early as possible.

Stephen Bonner, Assistant Commissioner for Regulatory Oversight at the ICO, said the partnership was necessary to address the growing financial challenge that cybercrime poses to businesses across the UK.

“Unfortunately, we have seen cybercrime cost British businesses billions in recent years,” he said. “That is why it is so important that the relevant agencies work together to strengthen the UK's cyber resilience. This new MoU builds on our existing relationship with the NCA and will help to improve cybersecurity standards across the board, while respecting each other's respective responsibilities.”

Paul Foster, NCA Deputy Director and Head of the National Cyber ​​Crime Unit, said working with the ICO would help strengthen the work the NCA was already doing.

“The NCA is leading a system-wide response to cybercrime, disrupting cybercriminals and, where possible, bringing them to justice,” he said. “Organizations that are vulnerable to imminent attacks or are themselves victims also need support and advice and we work closely with our partners to provide this.”

“We are delighted to make this commitment with the Information Commissioner's Office; this agreement represents our shared goal of building and maintaining a secure and resilient cyber ecosystem for all,” said Foster.