Banking and finance dispute resolution
For the latest news and comment on banking and finance disputes.
For the latest news and comment on banking and finance disputes.
For all the latest news and comment in clinical negligence healthcare law
This collection looks at the latest news and comment on commercial contracting healthcare law. With the health and social care sector under…
For all the latest news and comment in employment and pensions healthcare law
For all the latest legal and regulatory news and comment in health technology
This collection contains DAC B eachcroft's latest report, The Route to Integrated Healthcare , which provides the first practical examples of how…
This collection looks at the latest strategic, commercial, regulatory and negligence legal and advisory news and comment in health and social care. …
For all the latest news and comment on employment and pensions law.
DAC Beachcroft Dublin specialises in insurance, professional indemnity, defendant personal injury, health, commercial litigation and employment work.…
For all the latest new and comment in tax law.
The GC Collective collection offers insight and comment for General Counsels (GCs) and in-house legal teams.
For the latest news and comment on Corporate, M&A and Equity Capital Markets.
Analysis, commentary and checklists on the legal and governance implications of Brexit on businesses operating in, and trading with, the UK
The Accountant's Liability Collection brings you topical news and insight of interest to accountants, actuaries, trustees and other financial…
Events and online training for the health and social care sector.
DAC Beachcroft's LatAm Quarterly Newsletter discusses topical news and issues in Latin America
In response to client suggestions and requests, DAC Beachcroft's insurance sector flagship publication.
For all the latest legal and regulatory news and comment in health and social care integration
For all the latest news and comment in corporate regulatory healthcare law
Find advice, commentary and thought leadership on all aspects of Director's & Officer's Insurance; from contract formation through to complex…
This collection looks at the latest news, comment and development on the law affecting mental health services. The law affecting mental health…
Our market-leading Information Law team regularly publish articles and updates addressing the ever-evolving Information Law landscape.
This collection looks at our Safety, Health and Environment Team and the products and services they can provide. In the climate of increased…
The Insurance Act 2015 comes into force in August 2016 and will represent a significant change to insurance contract law in this country. This…
Legislative changes are bringing major changes to the Insurance landscape. This collection houses DAC Beachcroft's alerts on the pertinent issues.
For all the latest news and comment in clinical regulatory healthcare law
Organisations face ever-increasing expectations from Government, regulators, customers or service users, and other stakeholders, so scrutiny and…
For all the latest legal and regulatory news and comment in healthcare estates and facilities management
This collection addresses the full spectrum of cyber security and data risk management – the zeitgeist of our age.
We have acted for clients in the majority of significant product liability cases that have been decided in the UK over the last 35 years. Our product…
Considering the future landscapes of our cities
The European General Data Protection Regulation (GDPR) came into force on 25 May 2016. A rewrite of European data protection law, the GDPR imposes…
Considering the future of housing
For the latest news and comment on public procurement law.
Welcome to the Construction Risks collection. This space is used to report upon issues of interest to those who seek to allocate, manage and reduce…
Technology, brands and intellectual capital are key assets for any successful business. Our intellectual property (IP) team are experts at helping…
Considering the future of retail
The Insurance Market Conditions and Trends report is DAC Beachcroft's insurance sector flagship publication. Now in its tenth year, the report…
The Solicitors' Risk Collection addresses issues and developments affecting legal practitioners, and the professional indemnity insurers of legal…
Published On: 3 March 2016
To view any of the undertakings discussed below, please click here.
On 26 February 2016 the British Red Cross signed an ICO undertaking committing the organisation to best practice when undertaking fund raising calls. The undertaking arose after the ICO investigated a Daily Mail report which alleged that charities had been ignoring the direct marketing rules in order to compete more effectively for charity donations.
The undertaking commits British Red Cross to compliance with PECR. However the ICO interestingly state in their accompanying press release that they did not find that British Red Cross had breached direct marketing rules but the ICO offered advice to the charity to assist it in maintaining good standards of fundraising call practice.
The ICO have said “…a big part of our work is working with companies who want to get it right British Red Cross is a good example of that. They’ve seen the benefits of not just following the law, but following best practice, and we’re pleased that we’ve been able to work with them on this.”
On 24 February 2016 the ICO reported on its follow-up assessment of WHSC Trust. The Trust had previously signed an undertaking in April 2015 which arose after the ICO were notified of two data loss incidents. One such incident involved the theft of two computers containing sensitive personal information regarding WHSC Trust's mental health services.
The ICO reported that the review "demonstrated that the Trust has taken appropriate steps and put plans in place to address some of the requirements of the undertaking, however further work needs to be completed by the Trust to fully address the agreed actions". In particular, the ICO have recommended that WHSC Trust ensure that its data protection training completion rates are increased.
On 3 February 2016 the ICO reported on the follow-up assessment of CT which followed an undertaking received by the company in July 2015.
The undertaking of July arose after the ICO discovered that a removable hard drive containing CT's back-up customer database had not been returned to the company. The drive had been taken home by a member of staff who did not subsequently return to the company or return the drive. The drive contained the details of around 4,138 individuals.
The ICO discovered that it was customary for company staff to take the drive home at the end of the day to be stored away from the premises. On investigation, the ICO also found that CT were storing data for longer than necessary.
Under the 2015 undertaking, CT agreed a number of actions including that it would encrypt personal data stored on portable and mobile devices; implement appropriate policies regarding the retention of personal data and provide appropriate training to staff responsible for handling personal data.
The ICO reported in its follow-up assessment that CT had "taken steps in accordance with their undertaking, and put plans in place to address some of the requirements. However further work needs to be completed to fully address the agreed actions".
The follow-up assessment of Community Transport highlights the importance of not keeping data for longer than is necessary, which is creeping more and more into ICO enforcement action and will be a key area under the GDPR.
Organisations should also note that adequacy, frequency and/or monitoring of staff training continues to be a theme for enforcement action by the ICO.
Organisations are further advised to continue to ensure that staff training in data protection for data handling employees, is available, mandatory, regularly refreshed and updated by managers.