On May 24, 2023, the UK Information Commissioner’s Office announced it published new guidance for business and employers on responding to subject access requests.
Continue Reading UK ICO Publishes New Guidance on Subject Access Requests
United Kingdom
UK Information Commissioner Delivers Opening Remarks at European Parliament’s Committee on Civil Liberties, Justice and Home Affairs
On May 23, 2023, the UK Information Commissioner, John Edwards, delivered the opening remarks at the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs. …
Continue Reading UK Information Commissioner Delivers Opening Remarks at European Parliament’s Committee on Civil Liberties, Justice and Home Affairs
UK Regulators Urge Capita PLC Clients to Assess Effects of Data Breach
On March 22, 2023, Capita PLC experienced a cyber incident which it announced in a press release on April 3, 2023 and an update on April 20, 2023. …
Continue Reading UK Regulators Urge Capita PLC Clients to Assess Effects of Data Breach
The UK Data Protection Regulator Fines TikTok £12.7 Million
On April 4, 2023, the data protection regulator of the UK, the Information Commissioner’s Office, issued a fine of a £12.7 million to TikTok Information Technologies UK Limited and TikTok Inc for a number of breaches of UK data protection law, including failing to use children’s personal data lawfully. …
Continue Reading The UK Data Protection Regulator Fines TikTok £12.7 Million
UK Government Publishes AI White Paper
On March 29, 2023, the UK government published a white paper on artificial intelligence entitled “A pro-innovation approach to AI regulation.” …
Continue Reading UK Government Publishes AI White Paper
UK ICO Issues Updated Guidance on AI and Data Protection
On March 15, 2023, the UK Information Commissioner’s Office published an updated version of its guidance on AI and data protection, following requests from UK industry to clarify requirements for fairness in AI. …
Continue Reading UK ICO Issues Updated Guidance on AI and Data Protection
International Data Transfers: Time to Rethink Binding Corporate Rules
This is an excerpt from CIPL President Bojana Bellamy’s recently published piece in the IAPP “Privacy Perspectives” blog. This piece discusses binding corporate rules as important transfer mechanism.
Continue Reading International Data Transfers: Time to Rethink Binding Corporate Rules
UK Introduces Data Protection and Digital Information (No. 2) Bill
On March 8, 2023, the UK Secretary of State for Science, Innovation and Technology, Michelle Donelan, introduced the Data Protection and Digital Information (No. 2) Bill to UK Parliament.
Continue Reading UK Introduces Data Protection and Digital Information (No. 2) Bill
UK Tribunal Rules on Direct Marketing ICO Case Against Experian
On February 20, 2023, in the case of Experian Limited v The Information Commissioner, the First-Tier Tribunal in the UK ruled on the ICO’s action to require Experian to change how it processes personal data for direct marketing purposes.
Continue Reading UK Tribunal Rules on Direct Marketing ICO Case Against Experian
CIPL Responds to UK Digital Regulation Cooperation Forum (DRCF) Workplan 2023 to 2024 Call for Input
On January 26, 2023, the Centre for Information Policy Leadership at Hunton Andrews Kurth responded to a call for input from the UK’s Digital Regulation Cooperation Forum on its workplan for 2023 – 2024. …
Continue Reading CIPL Responds to UK Digital Regulation Cooperation Forum (DRCF) Workplan 2023 to 2024 Call for Input