Category Archives: Privacy

GDPR Subject Access Time Limits Reconsidered

Just like its predecessor (DPA 2018), the General Data Protection Regulation (GDPR) gives Data Subjects a right to make a Subject Access Request (SAR) to a Data Controller. This means that they can obtain: Confirmation that their data is being … Continue reading

Posted in Data Protection, GDPR, Privacy, Subject Access, Uncategorized | Tagged , , , | 1 Comment

First Two GDPR Enforcement Notices – Lessons Learnt

The Information Commissioner’s Office (ICO) recently served only its second Enforcement Notice for breaches of the GDPR. The first Enforcement Notice was issued in July 2018 against a Canadian company, AggregateIQ Data Services Ltd (AIQ). Strangely it was not published on … Continue reading

Posted in GDPR, ICO, personal data, Privacy | Tagged , , , | 3 Comments

Google v Lloyd- Representative action for damages fails under the DPA 1998

  As more individuals become aware of the way in which organisations such as Facebook, and Google have used their personal data unlawfully, then the prospect of litigation, and class actions, seems increasingly likely.  However, the recent case of Lloyd … Continue reading

Posted in Data Sharing, GDPR, Lawsuits, Litigation, personal data, Privacy, Social media | Leave a comment

Act Now launches GDPR Policy Pack

The first fine was issued recently under the General Data Protection Regulation (GDPR) by the Austrian data protection regulator. Whilst relatively modest at 4,800 Euros, it shows that regulators are ready and willing to exercise their GDPR enforcement powers. Article … Continue reading

Posted in CCTV, Data Portability, dpia, GDPR, Policy pack, Privacy, Security, Subject Access, Uncategorized | Tagged , , , , , , , , | Leave a comment

Equifax Ltd fined £500,000 for significant breaches of the DPA 1998

On 20th September the Information Commissioner issued Equifax Ltd with a £500, 000 monetary penalty, the biggest fine it has issued to date, and the maximum allowed under the Data Protection Act 1998.  Although half a million pounds might sound a … Continue reading

Posted in Data Protection, Fines, GDPR, Privacy, Records Management | 1 Comment

New RIPA Codes of Practice for Surveillance and CHIS

In August 2018 the revised Codes of Practice for Covert Surveillance and Property Interference and Covert Human Intelligence Sources (CHIS) were published. These contain substantial changes and additions which public authorities conducting surveillance under Part 2 of the Regulation of … Continue reading

Posted in Privacy, RIPA, Surveillance | Leave a comment

GDPR: Updating Privacy Notices

Are you caught in a last minute rush to update your privacy notice to comply with the forthcoming General Data Protection Regulation (GDPR)? Under the Data Protection Act 1998 (DPA), the requirement to issue privacy notices is tucked way in … Continue reading

Posted in Data Protection, GDPR, Privacy | 9 Comments