Earlier this month when the UK closed its investigation into Google's Wi-Fi data collection kerfuffle, the Information Commissioner's Office concluded the search giant did violate the country's data protection laws. But the regulator didn't do much beyond making the announcement and promising to audit Google's data collection practices.
Friday, InformationWeek reported the company has signed a new agreement with regulators in the UK regarding its data collection practices and its intention to enhance employee training programs on privacy and data security. The agreement formalizes the commitment Google SVP Alan Eustace made in late October.
In a blog post at the time, Eustace said:
[W]e're enhancing our core training for engineers and other important groups (such as product management and legal) with a particular focus on the responsible collection, use and handling of data. In addition, starting in December, all our employees will also be required to undertake a new information security awareness program, which will include clear guidance on both security and privacy.
According to UK Information Commissioner Christopher Graham, the regulators are keeping a close eye on the changes Google is making. In addition to enhancing privacy training and awareness and appointing a privacy point person, Google has also agreed to destroy the Wi-Fi data that was inadvertently collected in the country.