Brian Sims
Editor

Security measures strengthened to bolster UK data storage protection

UNDER NEW plans drawn up by the Government, Data Centres operating in the UK will be required to have tougher security and resilience measures in place to protect against potential disruption, including that realised by cyber attacks and extreme weather events.

A new set of laws designed to better protect the nation’s data would render minimum requirements mandatory to ensure Data Centre operators are taking the appropriate steps to boost security and resilience. It will also help to protect businesses and services alike that rely on Data Centres against disruption, reducing the risk of significant incidents that would otherwise interrupt or compromise access to data upon which they rely.

The Government is also considering an all-new regulatory function to make sure the operators of Data Centre services report incidents and work with the sector to assure and test risk mitigation against threats and hazards.

This particular move is intended to encourage better transparency of information and co-operation across industry and Government such that risks posed to the UK can be appropriately identified and addressed.

Given that Data Centres play a crucial role in the UK’s economy, a significant security issue could impact the entire country, not just individual businesses. On that basis, the Government’s plans would make sure these businesses are operating in line with the greater national interest. As such, the Government is also considering the designation of parts of the Data Centre sector as Critical National Infrastructure.

Important driver

Sir John Whittingdale, Minister for Data and Digital Infrastructure, said: “Data is an increasingly important driver of our economic growth and plays a pivotal role across our public services. Ensuring that companies storing it have the right protections in place to limit risks from threats such as cyber attacks and extreme weather will help us reap the benefits and afford businesses peace of mind.”

Whittingdale added: “The Government is serious about keeping data safe, which is precisely why we’re calling on these businesses to actively share their insights and expertise, while also making sure that we have the right regulations in place. By making security a top priority in how we handle data, we’re not only tackling new challenges, but also placing the UK as a global leader in promoting safe and responsible technology.”

Oliver Dowden CBE MP, Deputy Prime Minister and Chancellor of the Duchy of Lancaster, noted: “Protecting the security and resilience of data in the UK is of the utmost importance, while protecting both the public and our national infrastructure from attack must be seen as being crucial. We need a ‘whole of society’ approach, with the public and private sectors working in tandem to strengthen our defences.”

Dowden continued: “Alongside this important announcement, we are also implementing the game-changing Government Cyber Security Strategy as well as working through the National Cyber Security Centre to detect threats and prevent them from causing harm.”

Connected devices

Data Centres are facilities designed to store, manage and process large amounts of digital information such as business databases, customer records, website content and other critical information which is essential to how modern businesses and online services operate.

The Government’s proposals emanate as more and more of us choose to use connected devices and engage in digital activities such as shopping online and social media. In turn, this means that the amount of data stored in the UK alone has risen by a significant margin, subsequently highlighting the growing demand for data storage and processing capabilities, as well as the need to protect the stored information.

The Data Centre sector is now of great importance to economic activity, the delivery of private and public sector services and the everyday lives of millions of people here in the UK. As data becomes more valuable, entities like Data Centres are exposed to enhanced risk from incidents such as cyber threats and extreme weather, with extreme and prolonged weather episodes potentially interrupting access to important data.

Around 28% of all UK businesses use services housed in Data Centres. Large companies, and specifically those with at least 250 employees, are even more likely to use them (with 62% of them currently doing so).

For their part, Data Centre operators generated around £4.6 billion in revenue in 2021. In 2022, data played a significant role in the UK’s economy, contributing 6.9% to Gross Domestic Product (GDP), while 76% of all UK service exports were reliant on data.

More widely, 85% of all businesses surveyed by the Government said they handle digital data. Almost all businesses with ten or more employees do so. With Data Centre outages costing the industry billions of pounds every year, it’s hoped these changes will protect against potential risks and, in turn, keep more money in the bank for companies, while delivering peace of mind for members of the general public.

Vital role recognised

Julian David, CEO of techUK, explained: “We commend the Government for recognising the vital role of the Data Centre sector in underpinning our digital economy. It’s encouraging to see the intent to consult and continue to collaborate with industry on enhancing resilience across this critical sector.”

David continued: “As is the case with all regulatory developments, techUK and its members look forward to engaging on the matter to ensure the scope and policy development are enacted in such a way that’s practical for industry, its customers, the supply chain and consumers, while being cognisant of commercial environments.”

The Government has published a consultation asking for views on the proposed measures. Input is welcomed from various stakeholders, including Data Centre operators, cloud solution providers and experts in the field. The feedback gathered will inform decisions on these measures.

This collaborative effort aims to ensure the security of the UK’s data infrastructure, combining regulations with industry insights for a strong and safe digital environment. The new framework is also expected to help fuel economic growth by making the UK a more attractive place in which to invest in these services as it shores up its Data Centre resilience.

The Data Protection and Digital Information Bill will build on this action still further, with the legislation improving data security, bolstering national security and delivering new post-Brexit economic opportunities to the tune of at least £4 billion.

This is part of wider ongoing work to better protect businesses and individuals online. Other measures include a new regime that sets the minimum security standards for all consumer products with Internet connectivity, which will come into effect by April this year and make the UK the first country in the world to introduce such protections.

Company Info

WBM

64 High Street, RH19 3DE
EAST GRINSTEAD
RH19 3DE
UNITED KINGDOM

03227 14

Login / Sign up