Search Results for: glossary

Introduction Last year the United Kingdom government introduced a legislative proposal to change the UK privacy/data protection regime (which essentially consists of UK GDPR, PECR [E-Privacy rules] and the Data Protection Act 2018). Parliamentary work on this draft legislation was then put on hold and the UK government has now “reintroduced” the draft legislation, with Read more »

Introduction A revised version of the “Retained EU Law (Revocation and Reform) Bill” (that the UK government initially issued last year) was recently released. This news item looks in brief at this (complex) Bill and what the implications of it might be for the data protection regime in the UK. What’s this all about? Following Read more »

Introduction In the case of Driver v CPS the UK High Court awarded a significantly low amount of damages for minor distress suffered as the result of an infringement of data protection rules. Although this case was decided in the autumn of last year it serves as a useful reminder that courts continue to push Read more »

What’s this about? The UK’s data protection regulator the Information Commissioner’s Office (ICO) recently issued a transfer risk assessment tool along with guidance on international data transfers risk assessment. This article provides a look at the guidance and the tool. What’s an international data transfer? EU GDPR regulates international data transfers, which can only be Read more »

We first produced this alert on 15 September 2022 and have updated it to look at Meta’s appeal. Introduction Ireland’s Data Protection Commissioner (DPC) has fined Meta Platforms Ireland Limited €405 million for data protection infringements.  It has also ordered it to put in place a range of corrective measures. Meta operates Instagram and Meta Read more »

What’s this about? The UK’s data protection regulator the Information Commissioner’s Office (ICO) has acted against seven UK organisations who failed to respond to Subject Access Requests (SARs).This follows a trend across Europe of more enforcement action on SARs. There are some data protection terms in this note which are explained at www.bit.ly/gdprwords What is Read more »

What’s this about? The UK’s data protection regulator the Information Commissioner’s Office (ICO) recently issued revised guidance concerning the data transfer mechanism “Binding Corporate Rules” (BCRs) along with new application forms and tables for both data controllers and data processors. This article is a brief look at the guidance. What are BCRs? Under UK GDPR Read more »