You may not think it’s relevant to you, but you likely need to register ICO for e-commerce purposes. Almost every e-commerce business will handle data that requires annual registration with the regulatory body.
ICO registration may not be at the forefront of many e-commerce entrepreneurs minds but if you haven’t registered your business, you could be risking serious consequences.
What is ICO?
ICO stands for the Information Commissioner’s Office and is the data protection regulator for the UK.
Essentially the ICO’s responsibility is to ensure that businesses in the UK are compliant with strict data protection rules. They investigate organisations that go against these principles and impose penalties where appropriate.
What is data protection?
Data protection regulations ensure that any collection or analysis of our personal data is done so safely and securely and only for purposes that we agree to. In 2018, GDPR was rolled out to give UK and EU citizens more control over their data and with it, came new data protection legislation.
Under GDPR, you must only use data for specified and legitimate purposes, keep files accurate and confidential, and must delete data that is no longer required.
You can read the full GDPR requirements here.
Do e-commerce businesses collect personal data?
If you’re an entrepreneur, you will need to register for ICO for e-commerce businesses that operate within the EU or the UK. Although you may not think of yourself as a data handler, personal data includes:
- Names and shipping addresses of customers and possibly suppliers
- Payment details such as card numbers
- Email addresses for newsletter and abandon cart purposes
- Location data and cookies
How much does ICO registration cost?
If it’s the first time you’ve registered your e-commerce business for ICO, you will need to fill in a form that takes 10-15 minutes. You will need to provide payment details and business details, including turnover and staff members. Once you have completed the form, your business will be assigned a tier. This will determine the rate you pay.
Tiers range from a £40 annual payment up to a £2,900 annual payment but most e-commerce businesses will need to pay £40 or £60. If you set up your payment on direct debit, you receive a £5 annual discount, reducing the fee down potentially as low as £35.
Failure to register your e-commerce business can result in a fine, ranging from £400-£4,000.
How to stay GDPR compliant
It’s not enough just to register for ICO for e-commerce business owners; you need to treat your data accordingly! Here are some helpful tips to start you off:
- Deactivate default opt-ins
- Allow people to easily opt out of non-essential cookies on your site
- Have a privacy policy on your site
- Delete customer information once it is no longer required
- Store all data securely on a GDPR-compliant system such as Dropbox or Google Drive
Next Steps
Managing your legal requirements can be challenging as an e-commerce entrepreneur. Whether it’s VAT in EU countries, ICO, or business registration, if you need some advice, our e-commerce accountants will be happy to help. Don’t risk fines and headaches down the road; get in touch today.
The best time to act is now.
