The ICO has released guidance to help data controllers consider  when and how they should utilise data encryption, a relatively cheap and widely available technology, to comply with the Data Protection Act by keeping personal data secure. The guidance aims to reduce basic errors such as storing personal data on unencrypted devices, for example USB sticks, which are either stolen or lost.

ICO Encryption Guidance