Tag Archives: GDPR

The Data Protection Act 2018 – Pre and Post Brexit

The Data Protection Act 2018 (DPA 2018) came into force on 25th May 2018, alongside the General Data Protection Regulation (GDPR). Much has been written about it, both right and wrong. The purpose of the DPA 2018 is nicely summarised by the … Continue reading

Posted in Brexit, Data Protection, DP ACT 2018, EU DP Regulation, GDPR | Tagged , , | Leave a comment

Lessons from the Google GDPR Fine

On 21st January 2019, theFrench National Data Protection Commission (CNIL) fined Google 50 million euros for breaches of the General Data Protection Regulation (GDPR). This is the biggest financial penalty issued so far by any European regulator under the new law. … Continue reading

Posted in GDPR, ICO | Tagged , , | Leave a comment

Making GDPR British: New Regulations set out the UK’s post Brexit DP landscape

On 19thDecember 2018, just when you thought that you have finally made sense of the UK’s data protection regime, the government published new regulations with the catchy title, “The Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019.” There are sixty one pages of regulations to navigate, before 29thMarch 2019, with only one page of explanatory notes. And you though Theresa May had problems! Continue reading

Posted in DP ACT 2018, GDPR | Tagged , | 3 Comments

The Data Protection Act 2018: A Summary

The much-publicised Data Protection Act 2018 (DPA 2018) came into force last week (25thMay 2018), alongside the General Data Protection Regulation (GDPR). I recently wrote a blog post explaining the aims of the new Act and busting some of the myths. … Continue reading

Posted in DP ACT 2018, DP Bill, GDPR | Tagged , , | 5 Comments

The Data Protection Bill: It’s not what you think it is!

Yesterday the DCMS published the long awaited Data Protection Bill 2017. Accompanying the 203 pages of the Bill there are 112 pages of explanatory notes, a 4-page factsheet and a 5-page impact assessment. With detailed cross referencing to the provisions … Continue reading

Posted in Brexit, Data Protection, DP Bill, EU DP Regulation, GDPR | Tagged , , | 4 Comments

GDPR and the Data Protection Bill: Myths and Misunderstandings

On Monday, the Government published a Statement of Intent about the forthcoming Data Protection Bill. The idea behind the Bill is to fill in some of the gaps in the General Data Protection Regulation (GDPR), which will come into force … Continue reading

Posted in Brexit, Data Protection, DP Bill, EU DP Regulation, GDPR | Tagged , , , | 2 Comments

Data Protection Impact Assessments under GDPR

The General Data Protection Regulation (GDPR) will come into force in about 10 months. There is plenty to learn and do before then including: Raising awareness about GDPR at all levels Reviewing how you address records management and information risk … Continue reading

Posted in Data Protection, EU DP Regulation, GDPR, information risk, personal data, PIA's, Privacy | Tagged , , | 3 Comments