Monthly Archives: October 2020

The ICO’s New Subject Access Guidance

GDPR has introduced some new Data Subject rights including the right to erasure and data portability. The familiar right of Subject Access though still remains albeit with some additional obligations. Last week the Information Commissioner’s Office (ICO) published its long awaited right of access detailed guidance following a consultation exercise in December. The guidance provides some much needed clarification … Continue reading

Posted in ICO, Subject Access, Uncategorized | Tagged , | Leave a comment

GDPR and Employee Data: H&M Fined 35 Million Euros

On 2nd October 2020, the Hamburg Commissioner for Data Protection and Freedom of Information (Hamburg DP Commissioner) imposed a 35.3 million Euros fine on H&M Hennes &Mauritz for serious breaches of the General Data Protection Regulation (GDPR) at its service centre in Nuremberg. Specifically the … Continue reading

Posted in Uncategorized | Leave a comment

The British Airways Data Breach Fine

The ICO has finally issued a fine to British Airways (BA) for a cyber security breach which saw the personal and financial details of more than 400,000 customers being accessed by attackers.   £20 million is a lot of money, even for British Airways, and especially in a global pandemic which has seen all airlines struggle financially. However it is a far cry from … Continue reading

Posted in Uncategorized | 5 Comments

Cyber Security and GDPR Compliance

Olu Odeniyi writes… Data Protection Officers (DPOs), and others who work in data protection, will know that a fundamental requirement of GDPR is to protect personal data ”against accidental loss, destruction or damage, using appropriate technical or organisational measures” as stipulated in … Continue reading

Posted in cyber security, Uncategorized | Tagged | 3 Comments

Act Now Associate Appointed to Judicial Position

Act Now Training would like to congratulate Susan Wolf our senior associate, who has been appointed as a Fee Paid Member of the Upper Tribunal assigned to the Administrative Appeals Chamber (Information Rights Jurisdiction) and First Tier Tribunal General Regulatory Chamber (Information Rights Jurisdiction).  We are delighted … Continue reading

Posted in Information Rights, Tribunal | Tagged , , | Leave a comment

The Scottish Information Commissioner’s Annual (FOISA) Report 2020

The Scottish Information Commissioner, Daren Fitzhenry, recently published his Annual Report and Accounts for the year 2019-20. It is available to read and download from the Commissioner’s website. Mr Fitzhenry enforces the Freedom of Information (Scotland) Act 2002  (FOISA) as well as the Environmental Information (Scotland) … Continue reading

Posted in FOISA, Scotland, Uncategorized | Tagged , | Leave a comment