Free tools and resources for Data Protection Officers!

Tag Archives for " UK "

Cambridge Analytica’s parent pleads guilty to breaking UK data law

Cambridge Analytica’s parent company, SCL Elections, has been fined £15,000 in a UK court after pleading guilty to failing to comply with an enforcement notice issued by the national data protection watchdog, the Guardian reports.

While the fine itself is a small and rather symbolic one, given the disgraced political analytics firm went into administration last year, the implications of the prosecution are more sizeable.

Full article: Cambridge Analytica’s parent pleads guilty to breaking UK data law

The UK will have to renegotiate data protection relationships with EEA countries

UK government says that at the end of the transitional period, the EEA agreement will no longer be applicable and the UK will seek a new arrangement with the EEA countries Norway, Iceland and Liechtenstein.

The EU will start its assessment of the UK’s adequacy for international data transfers as soon as possible after Brexit. The UK is ready to start these assessments, the government says.

Source: The UK will have to renegotiate data protection relationships with EEA countries – Privacy Laws & Business

ICO updates data protection impact assessment guide

The revised guidance, published by the Information Commissioner’s Office (ICO), contains changes in response to recommendations issued by an EU-wide data protection watchdog.

In October, the European Data Protection Board (EDPB) called on the ICO to update its DPIA guidance after finding the ICO had been too strict with some of its examples of when DPIAs need to be conducted.

Full article: ICO updates data protection impact assessment guide

Government issues draft data protection legislation to deal with Brexit

The draft legislation, The data protection, privacy and electronic communications (amendments etc) (EU exit) regulations 2019, have been prepared to ensure that the UK data protection legal framework continues to function correctly after Brexit.

The instrument amends the Privacy and Electronic Communications Regulations 2003 (PECR), UK GDPR and the DP Act 2018.

Source: Government issues draft data protection legislation to deal with Brexit – Privacy Laws & Business

British intelligence officials propose way to access encrypted group chats

Two British intelligence officials have proposed what they see as a potential solution to a key challenge facing law enforcement agencies — an inability to intercept encrypted group calls and messages through services such as WhatsApp and Signal.

Their idea: Add law enforcement as a “silent” user to the chat or call.

Full article: The Cybersecurity 202: British intelligence officials propose way to access encrypted group chats – The Washington Post

Data breach whistle-blowers rise after GDPR

General Data Protection Regulation has given people the courage to notify the authorities on any data breaches that otherwise may have gone under their radar.

According to law firm RPC, there has been a 165 per cent increase in the number of whistle-blower reports since GDPR came into force last May. Looking at raw figures, a total of 82 reports have been made to the ICO, compared to 31 before GDPR.

Full article: Data breach whistle-blowers rise after GDPR | ITProPortal

First UK GDPR enforcement action is against Canadian firm with apparently no EU presence

On 24 October 2018, the UK data protection enforcement body, the Information Commissioner’s Office (ICO), issued an Enforcement Notice against Canadian data services firm, AggregateI Q (AIQ). This was the first Enforcement Notice issued by the ICO under the General Data Protection Regulation (GDPR).

Source: First UK GDPR enforcement action is against Canadian firm with apparently no EU presence

GDPR era heralds new peak in number of data breach whistleblowers

The number of whistleblowers lifting the lid on data breach events has tripled in the time since May 25 th 2018, when the EU’s General Data Protection Regulation came into force, the Financial Times online reports.

The Information Commissioner’s Office (ICO), which is the regulatory body for the GDPR in the UK, has received an escalating number of confidential reports on the issue, as illustrated by new data that reveals rising anxiety among the public regarding cyber security and privacy online.

Full article: GDPR era heralds new peak in number of data breach whistleblowers

Facial recognition technology to be used in London streets

Retail zones and shops in the UK capital are guaranteed to be bustling with consumers seeking out presents this Yuletide period. But central London shoppers themselves may also be getting picked out by new facial recognition technology implemented by Metropolitan police.

Source: Facial recognition technology to be used in London streets

>