Trump’s Golf Resort in Scotland Breaches UK Data Protection Law

Trump’s Scottish golf resort admitted to failing to register with the UK’s Data Protection Authority. According to the the Guardian, the Information Commissioner’s Office contacted the resort in Aberdeen about its vast illegal privacy abusing operations “handling data on thousands of golfers and guests, its staff and suppliers”.

“…this is an organisation which has been accused of bullying local people who disagree with it…”

The newspaper quoted The MSP Liam McArthur, justice spokesman for the Scottish Liberal Democrats, saying : “There is a strong case for the ICO to look into how the Trump organisation stored and used the data that it holds. This is an organisation which has been accused of bullying local people who disagree with it, and these substantive concerns cannot be brushed under the carpet. The Trump organisation failed to meet its data obligations for years. We need to know how data was collected, stored and used during this period.”

Businesses that store or use confidential personal data, including bank records, credit card details and mobile phone numbers must register with the ICO, unless they qualify for an exemption. “The Data Protection Act requires every organisation that processes personal information to register with the ICO, unless it is exempt. Failure to do so is a criminal offence,” the commissioner’s office said last week.

Business that violate such rules face fines up to £500,000. The resort has been found to operate several CCTV cameras thereby capturing people’s movements including staff and visitors.

The UK’s data protection regime is about to change with the adoption of the General Data Protection Regulation. Companies and organisations violating users’ privacy under the new rules face fines of 4% of their annual turnover or as high as €20 million.