Cordery

Legal.Compliance.

European Court Ruling on the Right of an Individual to Know the Reasons for and Date of the Consultation of Their Personal Data

What’s this about? The European Court of Justice (“the European Court”) recently ruled about the scope of the Subject Access Right (“SAR”) under the EU General Data Protection Regulation (“EU GDPR”) in circumstances where an organization’s employees have consulted an individual’s personal data; we wrote about the Advocate General’s Opinion in this matter here https://www.corderycompliance.com/eu-gdpr-sar-0223/. Read more »

Client Alert – UK Court Awards Aggravated Damages For Data Protection Infringements Including Slow And Inadequate Response To A Subject Access Request

What’s this about? In the recent UK data protection case of Yao Bekoe v The Mayor and Burgesses of the London Borough of Islington, the UK High Court awarded £6,000 in damages for data protection infringements, including for a significant delay in replying adequately to Subject Access Request. This article takes a look at the Read more »

Client Alert – Interplay Between Competition/Anti-Trust Law & Data Protection/Privacy Law

What’s this about? The recent European Court ruling about Meta Platforms and Others has highlighted the interplay between data protection/privacy law and competition/anti-trust law. This article takes a look at the key issues. A finding of data protection non-compliance can establish an anti-competitive infringement Meta Platforms Ireland operates Facebook in the EU. When users registered Read more »

UK Health Service Provider Reprimanded By UK Regulator For Unauthorized Use Of WhatsApp By Staff

What’s this all about? The UK data protection regulator the Information Commissioner’s Office (ICO) recently issued an official reprimand under UK GDPR to the health service provider NHS Lanarkshire (Scotland) following the unauthorized use of WhatsApp by staff to share patients’ personal data. It’s an interesting case looking at so-called ‘ShadowIT’ and the legacy of Read more »

EU-US Data Privacy Framework (DPF) FAQs

What’s this all about? The EU recently adopted a so-called “Adequacy Decision” for the US (“Commission Implementing Decision of 10.7.2023 pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council on the adequate level of protection of personal data under the EU-US Data Privacy Framework”) which has set up a system for Read more »

Contact a Cordery Specialist +44(0)207 118 2700 | Contact Us

Cordery is a trading name of Cordery Compliance Limited. Authorised and regulated by the Solicitors Regulation Authority.
SRA number 608187. Company number 07931532 registered in England and Wales. VAT number: 730859520
Registered office: Lexis House, 30 Farringdon Street, London, EC4A 4HH, United Kingdom

Cordery Compliance Limited trading as Cordery provides some products and services which are not regulated by the Solicitors Regulation Authority; we will clearly state this to you if this is the case.

We use the word “partner” to refer to a shareowner or director of the company, or an employee or consultant who is a lawyer with equivalent standing and qualifications.

Cordery is a registered trademark of RELX (UK) Limited, used under license. The Knowledge Burst logo is a registered trademark of Reed Elsevier Properties Inc., used under license.

Copyright © 2021 Cordery. All rights reserved.