Free tools and resources for Data Protection Officers!

Tag Archives for " ICO "

ICO issues the first fines to organisations that have not paid the data protection fee

Organisations across the business services, construction and finance sectors are among the first to be fined by the ICO for not paying the data protection fee.

All organisations, companies and sole traders that process personal data must pay an annual fee to the ICO unless they are exempt. Fines for not paying can be up to a maximum of £4,350.

Source: ICO issues the first fines to organisations that have not paid the data protection fee. | ICO

DP Impact Assessments: EDPB Differs Slightly from ICO Position

The European Data Protection Board (EDPB) has recently published its Opinion on the (United Kingdom) Information Commissioner’s list of processing activities which would require a Data Protection Impact Assessment under the GDPR.

In its Opinion, the EDPB appears to be moving away from the idea that processing of genetic or loca­tion data, on its own, might be enough to trigger the mandatory DPIA requirements of the GDPR. This news will perhaps come as a relief to organi­sations currently struggling to come to grips with the “new” DPIA process and the resources and time that it demands. But, should we be surprised by the EDPB’s Opinion and will it have a significant impact in practice on the way organisations consider and conduct DPIAs?

Full article: DP Impact Assessments: EDPB Differs Slightly from ICO Position

Uber fined more than $1 million by U.K. and Dutch authorities

Uber was fined a combined $1.17 million by British and Dutch authorities Tuesday for a 2016 data breach that exposed the personal details of millions of customers. The penalties come from the U.K.’s Information Commissioner’s Office and the Dutch Data Protection Authority.

Source: Uber fined more than $1 million by U.K. and Dutch authorities

Uber fined £385,000 for data breach affecting millions of passengers

Uber’s European operation has been fined £385,000 for a data breach that affected almost 3 million British users, the Information Commissioner’s Office has announced.

In November 2016, attackers obtained credentials to access Uber’s cloud servers and downloaded 16 large files, including the records of 35 million users worldwide. The records included passengers’ full names, phone numbers, email addresses, and the location where they had signed up.

Source: Uber fined £385,000 for data breach affecting millions of passengers

UK ICO Issues Warning to Washington Post Over Cookie Consent Practices

UK Information Commissioner’s Office (“ICO”) issued a warning to the U.S.-based The Washington Post over its approach to obtaining consent for cookies to access the service. The Washington Post presents readers with option of free access to a limited number of articles dependent on consent to the use of cookies and tracking for the delivery of personalized ads. To avoid a third party ad tracking (and advertising), a higher fee premium subscription should be choosed.

ICO concluded that since The Washington Post has not offered a free alternative to accepting cookies, consent cannot be freely given and the newspaper is in contravention of Article 7(4) of the EU General Data Protection Regulation (“GDPR”).

Source: UK ICO Issues Warning to Washington Post Over Cookie Consent Practices

UK police ‘gang matrix’ breached data laws

The Metropolitan police’s list of gang suspects breached data protection laws, potentially causing damage and distress to a disproportionate number of young black men, an investigation by the Information Commissioner’s Office (ICO) has found.

The list, called the gangs violence matrix, has also been criticised by human rights campaigners, who say it racialises the war on gangs and stigmatises black youngsters.

Source: Met’s ‘gang matrix’ breached data laws, investigation finds

Facebook Facing GDPR Investigation over Audience Targeting Methods

Facebook is facing the wrath of the European Union’s General Data Protection Regulation (GDPR) once again following a complaint made by the UK Information Commissioner Office (ICO) to the Irish Data Protection Commission (DPC) in relations to the social media giant’s user targeting tactics.

Facebook has come in for heavy criticism in recent weeks after a number of news reporters portrayed how easy it was to post fake advertisements that appear to be sponsored/funded by real politicians. Other reports included targeting individuals with extremely conservative views and opinions.

Full article: Facebook Facing GDPR Investigation over Audience Targeting Methods – Compliance Junction

ICO hits Leave.EU and Arron Banks insurance company with £135,000 in fines

An investigation conducted by the Information Commissioner’s Office (ICO) into a data breach suffered by Leave.EU has left the pro-Brexit campaign group with a huge financial penalty. Fines totalling £135,000 have been imposed upon Leave.EU as well as an insurance company owned by the organisation’s founder Arron Banks, due to the illegal use of personal data through political campaigning, the BBC news website reports.

Source: ICO hits Leave.EU and Arron Banks insurance company with £135,000 in fines

ICO publishes report on use of data analytics in political campaigns

UK’s data protection authority ICO has published a report to Parliament that brings the various strands of its investigation up to date. ICO found a disturbing disregard for voters’ personal privacy by players across the political campaigning eco-system — from data companies and data brokers to social media platforms, campaign groups and political parties.

UK Information Commissioner is calling for views for a code of practice covering the use of data in campaigns and elections. It will simplify the rules and give certainty and assurance about using personal data as a legitimate tool in campaigns and elections.

Source: Blog: Information Commissioner’s report brings the ICO’s investigation into the use of data analytics in political campaigns up to date | ICO

1 2 3 12
>