Coronavirus and data protection

‘…even in these exceptional times, the data controller must ensure the protection of the personal data of the data subjects’, Andrea Jelinek, Chair of the European Data Protection Board The European Data Protection Board’s advice During epidemics and pandemics, employers and public health authorities can process health data lawfully without the need to obtain [...]

By |2020-03-19T15:12:30+01:0019th March, 2020|DPO, ThoughtLeadership|

The new European strategy for data – implications for Big Tech

Last month, the European Commission released its Data Strategy with the aim to create a single data market, promoting greater data sharing to benefit businesses across all industries and sectors in the European Union. In light of this direction outlined by the European Commission, we take a closer look at the regulations and implications for [...]

By |2020-03-10T11:46:35+01:0010th March, 2020|DPO, ThoughtLeadership|

Children’s data protection in the age of datafication: a need for balance

Popular discussions on children’s data protection are often framed as a zero sum game between those who want children to be protected in the digital age and those who fear a chilling effect on content creation. But this is a false choice. It is possible to do both. Proper safeguards – including embedding privacy [...]

By |2020-01-08T11:41:09+01:0015th October, 2019|DPO, ThoughtLeadership|

The legal fallout of the Capital One data breach

In one of the biggest data breaches in the Information Age, a hacker accessed personal details of 106 million Capital One consumers. Through this breach, the hacker was able to gain access to 1 million Canadian Social Insurance numbers, 140,000 Social Security numbers and 80,000 bank account numbers. The US Department of Justice also [...]

By |2020-01-08T11:47:10+01:007th September, 2019|DPO, ThoughtLeadership|

The DPO must be independent, but how?

The EU GDPR compliance requirements call for certain organisations to appoint a data protection officer (DPO). Even where such an appointment is not mandatory, it is often still advisable for organisations processing personal data to appoint one. The European Data Protection Board, formerly the Article 29 Working Party, has advised that DPOs are the [...]

By |2020-01-08T11:52:44+01:0028th August, 2019|DPO, ThoughtLeadership|

The Marriot International data breach fine – yet another reminder to prioritise personal data protection

Introduction On 9 July 2019, the Information Commissioner’s Office (ICO) issued a notice of its intention to fine Marriott International £99,200,396 for its infringement of the General Data Protection Regulation (GDPR) following revelations of personal data breaches in November 2018. The fine came on the heels another fine by the ICO of £183 million [...]

By |2020-01-08T11:52:57+01:0019th August, 2019|DPO, ThoughtLeadership|

Facebook databreach

On July 24, 2019, Facebook was fined $5 billion in the United States by the Federal Trade Commission (FTC) – the largest to date for any company accused of violating consumers’ data privacy. Facebook must also establish an independent privacy committee to improve their data privacy standards and reduce the possibility of future violations. [...]

By |2020-02-10T11:03:33+01:0026th July, 2019|DPO, ThoughtLeadership|

183 million reasons to invest in your Data Protection Officer (DPO) function.

GDPR breach fines a reality - The Information Commissioner's Office (ICO) intention to fine British Airways £183 million for personal data breaches of it's customers will be of enormous concern to those that are in charge of cyber security. Even before the dust had settled on the British Airways story, the news came that the [...]

By |2020-01-08T11:53:32+01:0016th July, 2019|DPO, ThoughtLeadership|

A comparison between the GDPR and the California Consumer Privacy Act 2018

Introduction - Data Protection Laws in the US The California Consumer Privacy Act 2018 (CCPA) will come into effect on the 1st January 2020. It is stated to be the first comprehensive law in the area of privacy and personal information in the US. Generally the CCPA and the GDPR are similar in regard to [...]

By |2020-01-08T11:53:47+01:0029th April, 2019|DPO, ThoughtLeadership|

The new Washington Privacy Act; a move towards enhanced Information privacy laws in the US

The new Washington Privacy Act; a move towards enhanced Information Privacy Laws in the US The new Washington Privacy Act is expected to take effect on 31/12/2020. The Act is stated to be the second comprehensive State law on privacy protection in the US after the California Consumer Privacy Act, which will take effect [...]

By |2020-02-10T11:35:31+01:0012th March, 2019|DPO, ThoughtLeadership|