This petition was submitted during the 2019-2024 parliament

Rejected petition Make Directors of Companies personally liable for Data Breaches.

Pass legislation that ensures that CEOs, Directors and Business Owners of UK Companies, Charities and Businesses are deemed negligent and held personally liable for the effects of data breaches.

More details

The United Kingdom is experiencing an unprecedented level of cyber attack where businesses and organisations of all shapes and sizes are succumbing to the attacker. All too frequently, sensitive and personal data is being exposed and made available to anyone with an internet connection. Many of the attacks are preventable through simple steps which the National Cyber Security Centre has been advising since its inception. UK citizens need these so-called leaders holding to account.

This petition was rejected

Why was this petition rejected?

We can't publish petitions when the request is something that's already happening or something that has been announced since you started your petition.

We think your petition is covered by Government or Parliament action already. If you'd like something else, you could start a new petition clearly explaining what it is.

Company directors and others can already be held accountable for data breaches, with penalties including fines and criminal prosecution.

You can find out more about accountability for data breaches in the Information Commissioner's Office overview of the Data Protection Act 2018: https://ico.org.uk/media/2614158/ico-introduction-to-the-data-protection-bill.pdf

If you would like changes to existing rules about data breaches you could start a new petition explaining clearly what you would like the Government or Parliament to do.

We only reject petitions that don’t meet the petition standards.