The Information Commissioner’s Office (ICO) has issued a warning that where cookies are being used by companies in a way that is not compliant with data privacy laws, they “can expect to see us co...
Monitoring employees in and away from the workplace
The Information Commissioners Office (ICO) has published helpful guidance on lawful employer monitoring of staff in and away from the workplace. The information provides advice on how companies can co...
Personal data to flow from the UK to US again from 12 October 2023
The eagerly awaited UK to US personal data bridge will come into effect on 12 October 2023. A UK extension to the EU-US Data Privacy Framework means that cumbersome additional safeguards will no longe...
Positive Change Ahead with the UK Data Protection Reform Proposals
The UK government is currently considering proposals to reform the data protection regulations in the UK. Generally, there appears to be a move to a more practical and pragmatic privacy compliance sys...
Fines for non-compliant use of website cookies are on the rise. Don’t be caught out.
There have been numerous instances recently of data privacy regulators issuing organisations with fines for non-compliantly utilising cookies on their websites, without the user’s prior consent. It ...
EU-US Privacy Shield 2.0 for Personal Data?
The EU and US have announced an “agreement in principle” of a new Privacy Shield that will allow the simpler movement of personal data between entities based in the respective jurisdictions. Since...
New UK International Data Transfer Mechanism to be used from March 2022
The UK has finalised a new International Data Transfer Agreement to be used for transfers of personal data abroad. Simultaneously, an addendum to the EU Standard Contractual Clauses, currently used fo...
Supreme Court’s decision in £3billion data privacy case may come as a relief for data controllers
The Supreme Court has handed down their eagerly awaited decision in the £3billion case of Lloyd v Google. The court blocked the claim by Richard Lloyd, representing 4 million iPhone users, from proce...
New Standard Contractual Clauses Required for EU Personal Data Transfers
Personal data cannot legally be transferred outside the EU/EEA (European Economic Area), or indeed the UK, without specific legal safeguards in place, unless the country in question has been deemed to...
Children’s Privacy – New Requirements for Business providing Online Services
A statutory Code of Practice, the Age Appropriate Design Code, (known as ‘The Children’s Code’) has come into effect in the UK and, post 2 September 2021, businesses must ensure they comply with...