At its annual conference, the UK Government’s National Cyber Security Centre confirmed it would not share information with the ICO without first obtaining consent of an affected organization. This blog entry provides detail on this confirmation and the conference.
Continue Reading
Information Commissioners Office
Age Appropriate Design: ICO Issues Draft Code of Practice for Online Services Used by Children
Posted on
On April 15, 2019, the UK Information Commissioner’s Office issued for public consultation a draft code of practice that, once in effect, will regulate the provision of online services likely to be accessed by children in the UK. This blog entry provides an overview of the draft code. …
Continue Reading
ICO Issues GBP 400,000 Fine for Illegal Collection and Sharing of Personal Data
Posted on
On April 9, 2019, the UK Information Commissioner’s Office levied one of its most significant fines under the Data Protection Act 1998 against Bounty (UK) Limited. …
Continue Reading
ICO Sandbox Beta Phase Opens for Applications
Posted on
On March 29, 2019, the UK Information Commissioner’s Office announced that it has opened its sandbox beta phase for applications.…
Continue Reading
UK ICO Fines Pensions Release Provider for Unsolicited Marketing Emails
Posted on
The UK Information Commissioner’s Office has issued a Monetary Penalty Notice to pensions release provider Grove Pensions Solutions Ltd, fining it £40,000 after the company used contact details collected by a third party for its direct marketing campaign.…
Continue Reading
UK ICO Fines Vote Leave £40,000 for Unsolicited Texts
Posted on
The UK’s Information Commissioner’s Office has fined Vote Leave Limited (the UK’s official Brexit campaign) £40,000 for sending almost 200,000 unsolicited texts promoting the aims of the campaign.…
Continue Reading
CIPL Issues White Paper on the Regulatory Sandbox Following Joint Roundtable with the ICO
Posted on
On March 8, 2019, the Centre for Information Policy Leadership at Hunton Andrews Kurth LLP issued a white paper on Regulatory Sandboxes in Data Protection: Constructive Engagement and Innovative Regulation in Practice. This blog entry provides a link to download the white paper.…
Continue Reading
GPEN and National DPAs Publish Sweep Results on Privacy Accountability
Posted on
On March 5, 2019, the Global Privacy Enforcement Network published the results of its 2018 intelligence gathering operation on organizations’ data privacy accountability practices. This blog entry provides highlights on the results.…
Continue Reading
CNIL Publishes FAQs to Prepare for a No-Deal Brexit
Posted on
Posted in European Union, International
On February 20, 2019, the French data protection authority published a set of questions and answers to specify the CNIL’s recommendations and steps that organizations should take to prepare for a no-deal Brexit.…
Continue Reading
EDPB Reiterates the Need to Address Post-Brexit Data Transfers, Including BCRs
Posted on
At its plenary meeting today in Brussels, the European Data Protection Board adopted an Information Note on Data Transfers under the GDPR in the Event of a No-Deal Brexit and an Information Note on BCRs for Companies Which Have ICO as BCR Lead Supervisory Authority.…
Continue Reading