fbpx

Download free GDPR compliance checklist!

Tag Archives for " ICO "

Wheely ride-hailing app writes to UK privacy watchdog over Moscow data demands

The ride-hailing app Wheely has written to the UK’s Information Commissioner’s Office (ICO) after claiming it is being pressured into potentially breaking European privacy law by handing over data on its journeys to the Moscow Department of Transportation (MDOT).

The company, which has its headquarters in London, last month had its Russian subsidiary suspended from operating by a Moscow court for 90 days, after it refused to hand over the information that it argues could be used to breach the privacy of individual customers.

Source: Wheely ride-hailing app writes to UK privacy watchdog over Moscow data demands

ICO publishes 2020 Annual Track survey results

UK’s data protection authority – Information Commissioner’s Office (ICO) – has published 2020 Annual Track survey – a survey of over 2,000 people that the ICO commissions each year.

The main aim of this research is: “To gauge the general public’s awareness and perceptions of their information rights and to monitor any change in people’s trust and confidence in organisations who use their personal information. Also, to provide a measure of how the Commissioner/ ICO is perceived by the UK public.”

Source: 2020 Annual Track survey results | ICO

MPs criticise privacy watchdog over NHS test-and-trace data

A cross-party group of more than 20 MPs has accused the UK’s privacy watchdog of failing to hold the government to account for its failures in the NHS coronavirus test-and-trace programme.

The MPs have urged Elizabeth Denham, the information commissioner, to demand that the government change the programme after it admitted failing to conduct a legally required impact assessment of its privacy implications.

Source: MPs criticise privacy watchdog over NHS test-and-trace data | UK news | The Guardian

ICO Issues Guidance on Artificial Intelligence

The UK’s Information Commissioner’s Office (ICO) has finalised the key component of its “AI Auditing Framework” following consultation.

The Guidance covers what the ICO considers “best practice” in the development and deployment of AI technologies. It is not a statutory code and there is no penalty for failing to follow the Guidance.

Source: ICO Guidance on Artificial Intelligence

Barclays faces ICO probe for ‘spying on staff’

The watchdog is investigating allegations the firm used computer monitoring software to track employees.

The British bank has been known in the past to use employee-tracking software such as Sapience and OccupEye. Sapience is used for tracking employees’ productivity by monitoring their computer usage, while OccupEye tracks the time that is spent by employees at their desks.

Source: Barclays faces ICO probe for ‘spying on staff’ | IT PRO

UK data watchdog having a hard time making GDPR fines stick

British Airways expects the fine for its 2018 credit card data leak to be just 10.8 per cent of the £183m proposed by the UK data watchdog – while US hotel chain Marriott has both halved and kicked its own data blunder punishment into the long grass once again.

Mishcon’s Baines pondered whether the amount of ICO effort devoted to the two cases had disrupted its other data protection enforcement work: “One wonders if the effect of the BA and Marriott investigations has also been to cause work on other enforcement action to be paused, or at least delayed,” he mused, referring to boasts from Information Commissioner Elizabeth Denham last year that she was about to announce more big GDPR fines.

Source: UK data watchdog having a hard time making GDPR fines stick: Marriott scores another extension, BA prepares to pay 11% of £183m penalty threat • The Register

UK government reported 500 personal data breaches to ICO in a year

Central government reported almost 500 personal data breaches to the Information Commissioner’s Office in the 2020 fiscal year, with one in ten requiring formal investigation and at least 10 incidents that have required the department in question to take remedial action.

During FY20, the regulator also received a collective tally of 1,006 data-breach reports from the local government sector. The overall number of reports filed across all sectors quadrupled following the introduction of GDPR, from 3,331 in 20178/18 to 13,840 the following year.

Source: EXCL: Whitehall departments reported 500 personal data breaches to ICO in FY20 | PublicTechnology.net

Police take too much data from victims’ phones, says watchdog

Police are extracting “excessive amounts of personal data” from the mobile phones of victims and witnesses during investigations and are in danger of discouraging the public from reporting crime, the Information Commissioner’s Office (ICO) has warned.

In a critical study of data extraction policies, the ICO concludes that procedures are inconsistent across forces in England and Wales and calls for a new statutory code of practice to provide “greater clarity”.

Source: Police take too much data from victims’ phones, says watchdog | Police | The Guardian

ICO Teams Up with CMA and Ofcom in Digital Regulation Cooperation Forum

On July 1, 2020, the UK Information Commissioner’s Office (“ICO”) launched a joint endeavor with the Competition and Markets Authority (“CMA”) and Office of Communications (“Ofcom”), named the Digital Regulation Cooperation Forum (“DRCF”).

The DRCF is intended to promote collaboration between the three regulators and pool their collective expertise with regard to data, privacy, competition, communications and content in digital markets and services. It also intends to engage regularly with the UK government.

Source: ICO Teams Up with CMA and Ofcom in Digital Regulation Cooperation Forum

GDPR complaint lodged with UK data watchdog over coronavirus Test and Trace programme

Open Rights Group has instructed lawyers to lodge a complaint with the UK’s data watchdog over the rollout of the Test and Trace system because it says the system breaches the General Data Protection Regulation (GDPR).

The complaint to the ICO relates to the failure by the NHS and Public Health England (PHE), which runs the Test and Trace programme, to conduct a Data Protection Impact Assessment (DPIA), which is required under the GDPR before processing of data in high-risk situations.

Source: Legal complaint lodged with UK data watchdog over claims coronavirus Test and Trace programme flouts GDPR • The Register

1 2 3 18
>