Information Commissioner Office – enforcement action for nuisance calls and emails By Rhiannon Webster The ICO continues to focus on Data Subject Access Requests (DSARs) and marketing calls and emails.
Cyber and Information Law Newsletter: Issue 1 - General Information By , Rhiannon Webster, Japan granted an Adequacy Decision On 23 January 2019, the European Commission adopted its…
Cyber and Information Law Newsletter: Issue 1 - Brexit By Rhiannon Webster, Given the uncertainty around both the timing and form of Brexit, organisations whose businesses…
Cyber and Information Law Newsletter: Issue 1 - Enforcement By Jade Kowalski, Rhiannon Webster French data protection regulator fines Google 50 million euros for GDPR breaches On 21 January…
Cyber and Information Law Newsletter: Issue 1 - Round up of 2019 By , Jade Kowalski, Rhiannon Webster, Ceri Fuller, Khurram Shamsee, , Sophie Devlin Welcome to the relaunch of our cyber and information law round up…
How Artificial Intelligence will change your working life By Tim Ryan, Jonathan Deverill, Rhiannon Webster On Tuesday 12 March, we brought together Rob McCargow, Director of AI at PwC, A-B, Sophia, Director…
50 predictions: Cyber and Data Risk By Hans Allnutt, Rhiannon Webster Cumulative legal costs in data theft and privacy claims will be a significant exposure for insurers…
GDPR: Top 5 Tips By Rhiannon Webster DAC Beachcroft's Head of Information Law, Rhiannon Webster, gives her top 5 tips for organisations…
Forms of Authority for Medical Records post-GDPR By David Williams, Peter Allchorne, Rhiannon Webster In defending personal injury claims, the ability of compensating insurers and their representatives…
Cyber Threat Advisory Summary - December 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill NCC Group malware researchers recently published a blog post outlining the technical details of a…
New Cyber Protocol Rules in New York By Hans Allnutt, Rhiannon Webster, Patrick Hill The New York Department of Financial Services ("NYDFS"), which is responsible for the regulation of…
ThreatInformer - December 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill Importance of Breach Disclosure According to Bloomberg, Uber suffered a major data breach in…
Cyber Insurance, Privacy and Data Security Newsletter - December 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill As you may know, DAC Beachcroft recently launched Personal Data: the new oil and its toxic legacy…
GDPR: how can businesses prepare? By Francesca Muscutt, Rhiannon Webster Data protection law in the UK is set for a radical overhaul in 2018 and companies should be…
Personal Data: the new oil and its toxic legacy under the General Data Protection Regulation By Hans Allnutt, Rhiannon Webster The General Data Protection Regulation, which comes into force on 25 May 2018, represents a seminal…
GDPR: how accountancy firms can prepare for the enhanced regime By Rhiannon Webster, Francesca Muscutt Data protection law in the UK is set for a radical overhaul in 2018 and accountancy firms should be…
Accountancy Newsletter October 2017 By Richard Highley, Ross Risby, Suzanne Wharton, Rhiannon Webster, Francesca Muscutt, Gareth Robinson, , William Naylor DAC Beachcroft's Accountancy newsletter features topical news and insights for our clients and…
Facebook ordered to pay over €1m in fines for data violations By Hans Allnutt, Rhiannon Webster, Patrick Hill The Spanish Data Protection Agency (" SDPA ") has fined Facebook for violating Spanish Data…
Cyber Threat Advisory Summary - ThreatInformer By Hans Allnutt, Rhiannon Webster, Patrick Hill Current technical risks provided by ThreatInformer, include Drupal - Access Bypass and Adobe…
Cyber Threat Advisory Summary - Data Destroying Malware Post WannaCry & NotPetya By Hans Allnutt, Rhiannon Webster, Patrick Hill After the devastating effects of the WannaCry and NotPetya data destroying malware we have seen a…
Cyber Insurance, Privacy and Data Security Newsletter - October 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill Welcome to the latest edition of our Cyber Insurance newsletter…
Cyber Insurance, Privacy and Data Security Newsletter - July 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill We are delighted to share Closing the Gap: Insuring your business against cyber threats with you…
Information Security and Data Protection Newsletter for Financial Services June 2017 By Rhiannon Webster
Cyber Insurance, Privacy and Data Security Newsletter - May 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill Welcome to the latest edition of our Cyber Insurance newsletter…
Information Security and Data Protection Newsletter for Financial Services April 2017 By Rhiannon Webster, Khurram Shamsee As we all work with our businesses to prepare for the GDPR, the guidance is trickling through…
The European General Data Protection Regulation - a guide for businesses outside of the EU By Rhiannon Webster, Hans Allnutt The European General Data Protection Regulation - a guide for businesses outside of the EU.
Updates from across the world By Rhiannon Webster 2016 has been an interesting year for the data protection world, with Safe Harbor being struck…
Information Security and Data Protection Newsletter - December 2016 By Rhiannon Webster, Khurram Shamsee, Ceri Eaton After an uncertain summer concerning the future of the GDPR, the autumn has seen some clarity on…
Italy – Commercial Information Code of Conduct soon to enter into force By Rhiannon Webster The Italian code of conduct and professional practice applying to data processing for the purposes…
The European General Data Protection Regulation - a guide for businesses located in the United States By Rhiannon Webster The European General Data Protection Regulation…
Summer 2016 cases on multijurisdictional data processing By Rhiannon Webster There have been a number of recent cases on the way both European law and law in other…
Information Security and Data Protection Newsletter - July/August 2016 By Rhiannon Webster Herewith, your back to school edition of our data protection alerter…
In-depth analysis: The many-headed hydra of fraud By Kate Abrahams, Catherine Burt, Rhiannon Webster, David Williams, Nick Young The continuing drive to tackle insurance fraud has met with an encouraging degree of success in…
In-depth analysis: Automated decision making, connectivity and ethics By Hans Allnutt, Craig Dickson, Rhiannon Webster Connectivity has the potential to usher in a whole new era of consumer-insurer relationships, but…
France - Agreement reached on the French Digital Bill By Rhiannon Webster On 30 June, 2016, a joint committee reached an agreement on the French Digital Bill, i.e…
The European General Data Protection Regulation: An Overview of the Key Changes and Potential Impact By Rhiannon Webster This guide have been written to provide an overview of the impact that DAC Beachcroft expects the…
Bermuda – New Personal Information Protection Bill tabled By Rhiannon Webster It was announced on 1 July that a new Personal Information Protection Bill (the " Bill ") had been…
Brexit: where does that leave the UK and the GDPR? By Rhiannon Webster The outcome of the UK's referendum on its membership of the European Union has left many…
China - New provisions released regulating the use of apps By Rhiannon Webster On 28 June 2016, the Cyberspace Administration of China (the “ CAC ”) released the provisions on…
Australia - Consultation on Big Data guidance launched By Rhiannon Webster In his speech on 16 May at the opening of the 2016 Privacy Awareness Week in Australia, the…
Hong Kong - Revised guidance issued by Hong Kong Privacy Commissioner By Rhiannon Webster The Hong Kong Privacy Commissioner has issued a revised Code of Practice on Human Resource…
Argentina - Argentinian DPA signals shift towards more proactive approach By Rhiannon Webster The Argentinian National Directorate for Personal Data Protection (" NDPDP ") has recently…
Germany - German regulators want right of action against EU adequacy decisions By Rhiannon Webster The German Federal and State Commissioners (the " Commissioners ") have adopted a resolution…
Turkey - Ratifies 2001 Convention Protocol By Rhiannon Webster Turkey has taken a further step towards alignment with the rest of Europe by ratifying in its…
Serbia - Regulating collection and processing of sensitive health data in Serbia By Rhiannon Webster Regulation of the use of sensitive health data by public and private actors is fast becoming a hot…
Sweden - Swedish DPA issues guidance for GDPR compliance By Rhiannon Webster On the same day the GDPR was published in the Official Journal of the European Union, the Swedish…
Italy - Italian DPA authorises the use of “smart” video software in production plants By Rhiannon Webster The Italian data protection authority (the " Garante ") has recently announced that it has…
France - CNIL releases its inspection program for 2016 By Rhiannon Webster On the 12 May the French data protection authority (“ CNIL ”) announced its annual inspection…
GDPR Deep Dive: Profiling in the Insurance Industry By Rhiannon Webster The new rules on profiling are likely to be one of the areas of the General Data Protection…
Information Security and Data Protection Newsletter - June 2016 By Rhiannon Webster On the 25 May 2016, the General Data Protection Regulation ("GDPR") came into force…
Philippines - Consultation on new implementation rules and regulations for 2012 Privacy Act By Rhiannon Webster On 20 June 2016, the Philippines’ National Privacy Commission (“ NPC ”) released, for public…
Singapore - Guide to handling data access requests issued By Rhiannon Webster With the aim of providing businesses with greater clarity as to how to respond to data access…
Belgium - Belgian Privacy Secretary sets out data protection priorities By Rhiannon Webster On 2 June, the Belgian Secretary of State for privacy presented a policy note setting out his…
Serbia - Regulating collection and processing of sensitive health data in Serbia (1) By Rhiannon Webster Regulation of the use of sensitive health data by public and private actors is fast becoming a hot…
The European General Data Protection Regulation: Financial Services Industry By Rhiannon Webster This guide have been written to provide an overview of the impact that DAC Beachcroft expects the…
The European General Data Protection Regulation: Insurance Industry By Rhiannon Webster This guide have been written to provide an overview of the impact that DAC Beachcroft expects the…
Information Security and Data Protection Newsletter - May 2016 By Rhiannon Webster The countdown has begun…
Case law on establishment under the European Data Protection Directive By Rhiannon Webster Where a data controller is operating in different member states, it raises the question of whether…
Information Security and Data Protection Newsletter - April 2016 By Rhiannon Webster Welcome to our new look data protection and IT security alerter, and there is no better way to…
Germany – Independent status for German Data Protection Authority By Rhiannon Webster The German Data Protection Authority (the GDPA) welcomed in the new year by establishing itself as…
Hungary – Hungarian Data Protection Authority announces enforcement priorities for 2016 By Rhiannon Webster In October 2015 we reported on the Recommendations of the Hungarian Data Protection Authority (the…
Turkey – 2014 version of Draft Data Protection Bill to be enacted in 2016 By Rhiannon Webster A revised version of Turkey's Draft Data Protection Bill (the Draft Bill), first proposed in 2014,…
France – Facebook ordered to correct a number of breaches under the French Data Protection Act By Rhiannon Webster By way of its Decision No…
Belgium – Facebook granted appeal in case against Belgian Data Protection Authority By Rhiannon Webster In December 2015 we reported on the preliminary ruling by the Brussels court against Facebook for…
Austria – Changes to Austrian law will be required to implement EU-US Privacy Shield By Rhiannon Webster What does this cover? Last month a new EU-US data transfer regime to replace Safe Harbor, the…
Italy – Italian Supreme Court ruling on 'silent' telemarketing calls By Rhiannon Webster Italy's Supreme Court has upheld a decision of the Italian Data Protection Authority which stated…
The Netherlands – Dutch Data Protection Authority focuses on the protection of patient data in health care facilities By Rhiannon Webster The Dutch Data Protection Authority (the DDPA) has insisted that extra attention be afforded to the…
Turkey – Turkey ratifies Council of Europe Convention on automatic processing of personal data By Rhiannon Webster What does this cover? On 18 February 2016 the Law on Ratification of the Convention for the…
Germany – Consumer associations to have right to sue companies for breach of Data Protection Laws By Rhiannon Webster The amendment to the Act on Injunctive Relief (Unterlassungsklagengesetz) (the Act) offers better…
Spain – Security audits to medium and high level security files made by telephone By Rhiannon Webster What does this cover? The Spanish Data Protection Agency (the SDPA) has been informed that some…
Romania – Romanian Data Protection Authority issues a new guide for completion of notification forms By Rhiannon Webster What does this cover? Following the adoption of the Romanian Data Protection Authority's (the…
Germany – Cookies opt-out mechanism deemed sufficient to constitute consent By Rhiannon Webster What does this cover? Within the context of the EU Directive on Privacy and Electronic…
UK confirms that it will not opt-in to Article 43a of the GDPR By Rhiannon Webster In a written statement (the Statement) to both the House of Commons and the House of Lords, the UK…
WP29 release action plan concerning the implementation of the GDPR By Rhiannon Webster What does this cover? In response to the pending implementation of the GDPR, the WP29 have…
GDPR update - March 2016 By Rhiannon Webster What does this cover? Following the informal agreement of the Council of the EU (the Council),…
ICO monetary penalties - March 2016 By Rhiannon Webster What does this cover? To view any of the monetary penalties discussed below, please click here …
ICO enforcement notices - March 2016 By Rhiannon Webster On 28 February 2016 the ICO reported that it had issued AVSL a "STOP" order for breaches of the…
ICO undertakings - March 2016 By Rhiannon Webster On 26 February 2016 the British Red Cross signed an ICO undertaking committing the organisation to…
EU-US Privacy Shield update By Rhiannon Webster On 2 February the EU Commission announced that political agreement had been reached on the…
ICO publish rights for the future 3 year plan By Rhiannon Webster On 22 February 2016 the ICO announced the publication of its 2016-2019 plan.
European Economic and Social Committee release view on EC's digital strategy By Rhiannon Webster What does this cover? In early May 2015 the EC revealed its "Communication on a Digital Single…
Surveillance Camera Commissioner publishes self assessment tool and certification scheme By Rhiannon Webster The Surveillance Camera Commissioner (SCC) was set up to further the CCTV regulatory aims under the…
ICO blogs on stopping and identifying nuisance call companies By Rhiannon Webster What does this cover? The ICO has blogged on its work to prevent nuisance calls, confirming its…
ICO produce Wi-Fi analytics guidance By Rhiannon Webster The ICO have produced guidance on Wi-Fi analytics usage; covering the DPA compliant use of location…
House of Commons Committee releases report on the 'Big Data Dilemma' By Rhiannon Webster On 12 February 2016 the House of Commons Select Committee on Science and Technology (the Committee)…
EDPS publish 'Umbrella Agreement' opinion By Rhiannon Webster In September 2015 the European Commission announced the finalisation of an EU-US data agreement…
ICO publishes interim guidance on cross-border data transfers By Rhiannon Webster The ICO has published interim guidance on cross border transfers in light of the Schrems decision…
Google confirm right to be forgotten should be applied to all searches made from within the EEA By Rhiannon Webster Google has been part of a long running-battle with EU regulators regarding requests to delist…
ICO publish small business guide to IT security By Rhiannon Webster The ICO have updated its small business IT security guide (the Guide) on how to keep IT systems…
Committee, police and HMRC give view on investigatory powers proposal By Rhiannon Webster In last month's alerter we reported that critical submissions against aspects of the Government's…
ICO publishes revised privacy notices code of practice for consultation By Rhiannon Webster The ICO have published a revised privacy notices code of practice (the Proposed Code) for…
Information Security and Data Protection Newsletter - March 2016 By Khurram Shamsee, Rhiannon Webster New EU Data Protection Regime – what are the implications for employers as data controllers? …
Ireland – Commercial use of drones in Ireland By Rhiannon Webster What does this cover? The Office of the Data Protection Commissioner (ODPC) has released a…
Singapore – Government info-communications and media restructure By Rhiannon Webster What does this cover? On 18 January 2016 Singapore's Ministry of Communications and Information…
Japan – New Personal Information Protection Commission to be established By Rhiannon Webster What does this cover? Under the Use of Numbers to Identify a Specific Individual in the…
Taiwan – Amendments to personal data protection law By Rhiannon Webster What does this cover? The Office of the President has ordered that a number of changes (the…
Malaysia – Draft standards on data security, retention and integrity produced by Malaysian PCPD By Rhiannon Webster What does this cover? In August 2015 we reported on the Malaysian Personal Data Protection…
Ireland – Independence of the Irish Data Protection Commissioner is called into question By Rhiannon Webster What does this cover? Following a series of judgments (including the Commission v Germany…
