fbpx

Download free GDPR compliance checklist!

Tag Archives for " UK "

High Court dismisses claim where DSAR regime abused

The High Court of England and Wales has dismissed a claim against a bank for allegedly failing to provide an adequate response to the Claimant’s data subject access request (DSARs), highlighting the robust approach that the court is willing to take where it suspects the tactical deployment (or abuse) of the DSAR regime.

Individuals and claimant firms are increasingly using DSARs as a means of seeking to obtain information and documentation in support of civil claims and in parallel to or before disclosure obligations under the Civil Procedure Rules bite. Where those requests are repetitive, numerous, and the real purpose is to obtain documents and not data, businesses might reasonably resist civil claims raising similar factual issues.

Source: Data Subject Access Requests – High Court dismisses claim where DSAR regime abused

UK Mass Hacking Ruled Illegal

After five years of legal wrangling, the UK High Court has ruled that the security and intelligence services cannot search the computers and phones of millions of people under a single ‘general warrant’.

Quashing a decision by the Investigatory Powers Tribunal (IPT), the court ruled that section 5 of the Intelligence Services Act (ISA) 1994 does not permit the issuing of general warrants to property interference with property and certain forms of computer hacking.

Source: UK Mass Hacking Ruled Illegal

UK competition watchdog opens probe into Google privacy changes

Google’s ‘Privacy Sandbox’ plan to remove third party cookies from its Chrome browser is being probed by a regulator in the United Kingdom over concerns it would be anticompetitive. The tech giant’s proposals, which have yet to be finalised, would see third party cookies disabled on its Chrome and Chromium browsers.

The Competition Markets Authority has now began an investigation into whether the plan would unfairly distort the market in Google’s favour and breach competition law.

Source: UK competition watchdog opens probe into Google privacy changes

London Girl granted anonymity to bring allegations that TikTok violated her privacy to court

A London judge granted a 12 year-old girl anonymity so she can take TikTok to court over allegations the social-media company violated the European Union’s strict data protection rules.

The London child “intends to go to a court asserting — rightly or wrongly — that her privacy rights and those of others like her have been infringed in ways that call for a remedy,” Judge Mark Warby said in a decision Wednesday. Not granting her anonymity could “have a chilling effect on the bringing of claims by children to vindicate their data-protection rights.”.

Source: London Girl granted anonymity to bring allegations that TikTok violated her privacy to court | National Post

UK quietly shifts away from promise of ‘deep’ foreign and security links with EU

Plans for the UK to re-establish formal foreign and security policy links with the European Union, frozen during negotiations over a trade deal, may never be revived, as UK foreign policy focuses on bilateral links in Europe and developing new alliances in the Indo-Pacific and Middle East.

The freeze marks a little-discussed reversal of thinking from Theresa May’s era, when the political declaration at the time of Britain’s withdrawal spoke about negotiating deep cooperation between the UK and EU.

Full article: UK quietly shifts away from promise of ‘deep’ foreign and security links with EU | World news | The Guardian

Brexit Deal Keeps EU-UK Data Flows Open as Parties Pursue Mutual Adequacy

On December 24th, with a year-end deadline and the holidays fast approaching, European Commission and United Kingdom officials announced they reached a deal on the EU-UK Trade and Cooperation Agreement.

Once formally adopted by the European Union institutions, the Agreement will govern the relationship between the EU and UK beginning on January 1, 2021, following the end of the Brexit transition period.

Parties agreed to allow for the continued free flow of personal data for up to six months to allow time for the EU and UK to adopt mutual “adequacy decisions”. Absent these adequacy decisions organizations would need to consider implementing additional safeguards, such as standard contractual clauses, to transfer personal data between the EU and UK.

Source: Brexit Deal Keeps EU-UK Data Flows Open as Parties Pursue Mutual Adequacy

UK ICO Publishes New Data Sharing Code

On December 17, 2020, the UK Information Commissioner’s Office (ICO) published its Data Sharing Code of Practice following a public consultation which commenced in 2019.

The Code focuses mainly on data sharing among data controllers who are subject to the GDPR and the UK Data Protection Act 2018. Due to the detailed way in which the Code covers data sharing in the context of the GDPR, it will also be of wider interest to data controllers in the EU and beyond – even after the end of the Brexit transition period.

Source: UK ICO Publishes New Data Sharing Code | Alston & Bird Privacy Blog

UK Online Safety Bill may have implications for freedom of expression and privacy

The UK Online Safety Bill may have “implications for freedom of expression and privacy” as private messaging may fall within the scope of the regulatory framework, a digital rights group has warned.

On 15 December, the UK government published its full response to the Online Harms White Paper consultation ahead of the publication of the Online Safety Bill next year.

Source: UK Online Safety Bill may have implications for freedom of expression and privacy, says digital rights Group

UK police unlawfully processing over a million people’s data on Microsoft 365

The roll-out of Microsoft 365 to dozens of UK police forces may be unlawful, because many have failed to conduct data protection checks before deployment and hold no information on their contracts.

Police forces across the UK stand accused of unlawfully processing people’s personal data within the Microsoft 365 cloud productivity platform, after failing to carry out the required data protection checks before deploying the technology.

Source: UK police unlawfully processing over a million people’s data on Microsoft 365

Facebook to move UK users to California terms, avoiding EU privacy rules

Facebook Inc will shift all its users in the United Kingdom into user agreements with the corporate headquarters in California, moving them out of their current relationship with Facebook’s Irish unit and out of reach of Europe’s privacy laws.

The change takes effect next year and follows a similar move announced in February by Google. Those companies and others have European head offices in Dublin, and the UK’s exit from the EU will change its legal relationship with Ireland, which remains in the Union.

Source: Exclusive: Facebook to move UK users to California terms, avoiding EU privacy rules | Reuters

1 2 3 52
>