She continued :'The Lords clearly ruled that processing data in this way is covered by the act and where it is carried out improperly, I can take enforcement action against the data user against which appeals can be brought to the Data Protection Tribunal.
'However, an individual employee cannot now be prosecuted under the Data Protection Act for 'browsing' personal data, although it may be possible to prosecute under the Computer Misuse Act 1990. Employees accessing a database for their own use or amusement causes concern about security, integrity and confidentiality of personal information.'
The case concerned a former police constable who, on two occasions, had asked the operator of the police computer to give him the name of the owner of particular vehicles for which he supplied the index numbers. He wanted the information to help in a debt collection business in which he was concerned and not as part of his duties as a police officer.
Mrs France concluded: 'I wholeheartedly welcome the decision of the House of Lords that the words 'use' and 'disclosure' in the Data Protection Act should be given their 'natural and ordinary meaning.
It was most important to ensure that the act dealt with ordinary everyday activities and not with the wordings hidden inside computers. Especially pleasing were the remarks recognising that the Data Protection Act flows from the 1981 Council of Europe Convention and exists to protect personal privacy'.