On April 17, 2019, the Dutch Data Protection Authority issued six recommendations for companies, to be taken into account when drafting privacy policies. This blog entry provides an overview of the recommendations as well as the investigation which preceded their issuance.
Continue Reading
Data Protection Act
UK Supreme Court Gives Morrisons Permission to Appeal Data Breach Class Action
Posted on
The UK Supreme Court has granted VM Morrison Supermarkets PLC permission to appeal an October 2018 UK Court of Appeal ruling that Morrisons was vicariously liable for a data breach caused by a former employee. This blog entry provides an overview of the case.…
Continue Reading
ICO Issues GBP 400,000 Fine for Illegal Collection and Sharing of Personal Data
Posted on
On April 9, 2019, the UK Information Commissioner’s Office levied one of its most significant fines under the Data Protection Act 1998 against Bounty (UK) Limited. …
Continue Reading
The CNIL Serves Formal Notice to WhatsApp Regarding Sharing Data with Facebook
Posted on
On December 18, 2017, the French data protection authority publicly announced that it served a formal notice to WhatsApp regarding the sharing of WhatsApp users’ data with Facebook Inc. This decision, dated November 27, 2017, follows the investigations led by the CNIL regarding Facebook’s 2014 acquisition of WhatsApp.…
Continue Reading
UK Government Introduces Draft Data Protection Bill to Parliament
Posted on
Posted in European Union, International
On September 14, 2017, the UK Government introduced a new Data Protection Bill to Parliament, which is intended to replace the UK’s existing Data Protection Act 1998 and enshrine the GDPR into UK law once the UK has left the European Union.…
Continue Reading
UK ICO Revises Subject Access Guidance Following Court Rulings
Posted on
On June 20, 2017, the UK Information Commissioner’s Office published an updated version of its Code of Practice on Subject Access Requests. The updates are primarily in response to three Court of Appeal decisions from earlier this year regarding data controllers’ obligations to respond to subject access requests. The revisions more closely align the ICO’s position with the court’s judgments.…
Continue Reading
DPA of Argentina Issues Draft Data Protection Bill
Posted on
Pablo Palazzi, from Buenos Aires law firm Allende & Brea, reports that earlier this month, the Argentine Data Protection Agency posted the first draft of a new data protection bill on its website. The Draft Bill is heavily based on the EU GDPR and maintains the structure of Argentina’s current data protection bill.…
Continue Reading
UK Government Quizzed on GDPR Implementation and Post-Brexit Data Protection
Posted on
On February 1, 2017, Matt Hancock, the UK Government Minister responsible for data protection, was questioned by the House of Lords committee on the UK’s implementation plan of the EU General Data Protection Regulation in the context of Brexit. In responding to the questioning, Hancock revealed further details into the UK Government’s position on implementing the GDPR into UK law.…
Continue Reading
Dutch Court Decides WhatsApp Data Protection Case
Posted on
On November 23, 2016, Bloomberg BNA reported that the Hague Administrative Court in the Netherlands upheld a decision by the Dutch Data Protection Authority that WhatsApp was in breach of the Dutch Data Protection Act. …
Continue Reading
Entry into Force of the French Digital Republic Bill
Posted on
On October 7, 2016, the French Digital Republic Bill (the “Bill”) was enacted after a final vote from the Senate. The Bill aligns the French legal data protection framework with the EU General Data Protection Regulation (“GDPR”) requirements before the GDPR becomes applicable in May 2018.…
Continue Reading