IT Security and Data Protection Newsletter - February 2014 By Rhiannon Webster IT Security and Data Protection Alert
Cookies on Safari? English High Court to hear privacy case against Google Inc By Rhiannon Webster The High Court ruled on 16 January 2014 that three individuals resident in England may bring a…
IT Security and Data Protection for Financial Services Newsletter - March 2014 By Rhiannon Webster IT Security and Data Protection Alert
Health Information Law Newsletter - February 2014 By Rhiannon Webster We are pleased to introduce our inaugural issue of the Health Info Law Newsletter…
Cross-border transfers of personal data from Europe By Rhiannon Webster Drawing on our experience of managing worldwide data transfer projects, we have picked a number of…
Information Security and Data Protection Update for Financial Services By Rhiannon Webster Click here to see what is covered by the below developments...
Cyber Insurance, Privacy and Data Security Newsletter - July 2014 By Hans Allnutt, Rhiannon Webster, Patrick Hill Data protection and privacy is only one element of cyber risk and there have been a number of…
Information Security and Data Protection for Financial Services - July 2014 By Rhiannon Webster This month we have moved another step forward in allowing claims for breach of data protection…
Insurance Adviser Alert: Will India Finally Open for Insurance Business? By Rhiannon Webster The success of the BJP in the recent Indian general elections has raised expectations of…
Cyber Insurance, Privacy and Data Security Newsletter - August 2014 By Hans Allnutt, Patrick Hill, Rhiannon Webster Cyber-attacks remain a regular feature of news headlines…
Information Security and Data Protection for Financial Services - August 2014 By Rhiannon Webster Prior to this year, the fifth data protection principle (personal data must not be kept longer than…
Information Security and Data Protection Newsletter - August 2014 By Rhiannon Webster Prior to this year, the fifth data protection principle (personal data must not be kept longer than…
Cyber Insurance, Privacy and Data Security Newsletter - October 2014 By Rhiannon Webster, Patrick Hill, Hans Allnutt Cyber security is about risk reduction, not risk prevention…
DAC Beachcroft Information Security and Data Protection for Financial Services – October 2014 By Rhiannon Webster How many of us are annoyed on daily basis by the cookie banner pop up which has become a feature of…
DAC Beachcroft Information Security and Data Protection Newsletter – October 2014 By Rhiannon Webster
Information Security and Data Protection for Financial Services - November 2014 By Rhiannon Webster As the days get more and more overcast and the nights draw in, what more fitting than another piece…
Greece: Authorisation of disclosure of sensitive data to a third party for judicial purposes By Rhiannon Webster, Hans Allnutt In a number of decisions issued during this period (including, without limitation, the decisions…
Australia: Failure to notify customers of data beach may result in investigation By Hans Allnutt, Rhiannon Webster Australian travel insurer, Aussie Travel Cover (ATC) has recently revealed that it was the subject…
Japan: New guidelines on Personal Information Protection Act By Rhiannon Webster, Hans Allnutt The Japanese Ministry of Economy, Trade, and Industry ( METI ) has published amended guidelines on…
South Korea: Guidelines on data protection for big data released By Hans Allnutt, Rhiannon Webster The South Korean Communications Commission has released guidelines covering data protection in…
Update on Russia data protection law By Rhiannon Webster, Hans Allnutt Further to our previous stories covering the proposed new data protection law in Russia (Law) the…
DAC Beachcroft Information Security and Data Protection for Financial Services – December 2014 By Rhiannon Webster As the days get more and more overcast and the nights draw in, what more fitting than another piece…
DAC Beachcroft Information Security and Data Protection for Financial Services – January 2015 By Rhiannon Webster Welcome to our first data protection alert of 2015 and my opportunity to muse on the data…
DAC Beachcroft Information Security and Data Protection Newsletter – January 2015 By Rhiannon Webster Welcome to our first data protection alert of 2015 and my opportunity to muse on the data…
New cross-border certification system agreed by APEC By Rhiannon Webster, Hans Allnutt Further to the introduction of the Cross Border Privacy Rules ( CBPR ) system, a data privacy…
Japan: Benesse data breach affects one third of population By Hans Allnutt, Rhiannon Webster An investigation by Benesse, Japan's largest provider of correspondent education for children, of a…
Germany: Draft bill published aimed at strengthening protection of consumer's personal data By Hans Allnutt, Rhiannon Webster The German Federal Cabinet has adopted the “Draft Law on the improvement of civil enforcement of…
Germany introduces new law allowing consumer associations to bring actions for violations of data privacy laws By Hans Allnutt, Rhiannon Webster The German government has passed a new law (the Law) that will give consumer associations the right…
Belgian privacy commission releases cookies guidance By Rhiannon Webster, Hans Allnutt The Belgian Privacy Commission has released guidance on the use of cookies and similar technology…
Court finds Max Mosley has possible DPA case against Google By Rhiannon Webster, Hans Allnutt Max Mosley brought a case against Google where he sought financial compensation and a prevention…
China: New cybersecurity regulations for banking sector By Rhiannon Webster, Hans Allnutt The Central Leading Group for Cyberspace Affairs, a division of the Chinese government, has…
DAC Beachcroft Information Security and Data Protection Newsletter – February 2015 By Rhiannon Webster Does your organisation think about data protection considerations at the outset of a new project or…
DAC Beachcroft Information Security and Data Protection for Financial Services – February 2015 By Rhiannon Webster Does your organisation think about data protection considerations at the outset of a new project or…
Japan: Bill to amend Japanese personal information protection act By Hans Allnutt, Rhiannon Webster An amendment to the Japanese Act on protection of personal information was submitted to the…
Spain: Spanish DPA issues decision on direct marketing consent notices By Rhiannon Webster, Hans Allnutt On 12 March 2015 the Spanish DPA issued a EUR10,000 fine on a telecoms company for a breach of…
Hong Kong: Guidance issued on the use of drones By Rhiannon Webster The Hong Kong Privacy Commissioner has published guidance on the use of unmanned aircrafts or…
Italy - the Garante publishes FAQ guidance on controls and sanctions By Rhiannon Webster The Italian Data Protection Authority (the Garante) has published guidance (the Guidance) on the…
Germany - Revised IT Security Bill By Rhiannon Webster A revised bill on IT security (the Bill), the aim of which is to improve the protection offered…
Information Security and Data Protection Newsletter - March 2015 By Rhiannon Webster On 2 March, I braved the snow, and crossed a picket line (PCS members working at the Information…
Information Security and Data Protection for Financial Services - March 2015 By Rhiannon Webster On 2 March, I braved the snow, and crossed a picket line (PCS members working at the Information…
Cyber Insurance, Privacy and Data Security Newsletter - April 2015 By Hans Allnutt, Rhiannon Webster DAC Beachcroft's latest Cyber Insurance, Privacy and Data Security Newsletter is out for April…
PECR Amendment Regulations Published By Rhiannon Webster, Hans Allnutt Last month we reported the government's intention to amend PECR to make it easier for the ICO to…
Germany: New case law on unsolicited emails to customers By Rhiannon Webster, Hans Allnutt In Germany, generally a recipient's consent is required before an email is sent to a private email…
ICO publishes big data and data protection summary of feedback By Rhiannon Webster The ICO have published a summary of the responses obtained on its Big Data and Data Protection…
ICO Prosecutions - April By Hans Allnutt, Rhiannon Webster Lismore Recruitment Limited – On 16 April 2015 the ICO reported that the recruitment company was…
China / US: Report published on the data flows between China and US By Hans Allnutt, Rhiannon Webster The American Chamber of Commerce in China has published a spotlight report on “Protecting Data…
Information Security and Data Protection Newsletter for Financial Services - April 2015 By Rhiannon Webster Landmark data protection decisions are few and far between but this month the Court of Appeal…
ICO monetary penalties - April By Rhiannon Webster, Hans Allnutt Direct Assist Ltd – On 1 April 2015 the ICO issued a monetary penalty notice of £80,000 upon…
Canada: Canada joins APEC cross border privacy rules By Rhiannon Webster, Hans Allnutt Further to our story in our March alerter on the new Asia Pacific Economic Cooperation Cross Border…
USA: Data Security and Breach Notification Act 2015 By Hans Allnutt, Rhiannon Webster On 15 April 2015 the House Energy & Commerce Committee approved the Data Security and Breach…
ICO audit of Data sharing between the public sector and SAFOs By Hans Allnutt, Rhiannon Webster The ICO recently carried out an investigation and audit into data sharing between the public sector…
France CNIL annual activity report 2014 published By Rhiannon Webster, Hans Allnutt The French Data Protection Authority (the CNIL) published on 16 April 2015 its Annual Activity…
Italy: The Italian Data Protection Authority's "Anti-Spam handbook" By Rhiannon Webster, Hans Allnutt The Italian Data Protection Authority (the Garante) has issued an "anti-spam handbook" (the…
US: US Cyber Week commences April 21st By Hans Allnutt, Rhiannon Webster US Cyber Week commenced on April 21st in the House of Representatives in which it was proposed that…
Business cyber security guide by the International Chamber of Commerce By Rhiannon Webster, Hans Allnutt A cyber security guide aimed at both small and large sized businesses has been developed by the…
Best practice guide for data protection issued by CII group By Rhiannon Webster A new best practice guide has been produced by the Chartered Insurance Institute (CII) with support…
ICO Undertakings - April 2015 By Rhiannon Webster On 24 April 2015, Office Holdings Ltd received a follow-up assessment undertaken by the ICO…
Commitment to agree the framework text in 2015 By Hans Allnutt, Rhiannon Webster Bruno Gencarelli (European Commission, Head of Data Protection Unit) speaking at the IAPP…
FTC settlement with two companies accused of misleading consumers over Safe Harbor certification. By Hans Allnutt, Rhiannon Webster Two companies, TES Franchising LLC, and American International Mailing, Inc…
Information Security and Data Protection Newsletter for Financial Services - May 2015 By Rhiannon Webster In last month's editorial, we commented on the demise of s…
Information Security and Data Protection Newsletter for Financial Services - June 2015 By Rhiannon Webster More and more of our clients are seeking to develop insights across customers and markets…
Information Security and Data Protection Newsletter for Financial Services - August 2015 By Rhiannon Webster All data protection heads were focussed on Brussels in June and July with the first few trilogue…
Information Security and Data Protection Newsletter - September 2015 By Rhiannon Webster Employers are often vexed at the prospect of undertaking the time-consuming and costly exercise of…
Information Security and Data Protection Newsletter - October 2015 By Rhiannon Webster It would seem remiss of me to lead with anything other than the ECJ's declaration that the Safe…
Information Security and Data Protection Newsletter - November 2015 By Rhiannon Webster It has been another jam packed month in the world of data protection…
Information Security and Data Protection Newsletter - December 2015 By Rhiannon Webster At this time of year it is traditional to look back over the last 12 months and do some crystal…
The "Cybercrime Bill" is published By Hans Allnutt, Rhiannon Webster The Criminal Justice (Offences Relating to Information Systems) Bill 2016, more commonly referred…
Information Security and Data Protection Newsletter - January 2016 By Rhiannon Webster A milestone has been reached in the world of data protection law…
ICO and Ofcom in continued effort to tackle nuisance communications By Rhiannon Webster In January 2013 Ofcom teamed up with the ICO to work together on a strategy to tackle nuisance…
Agreement reached on new EU cyber-security rules By Rhiannon Webster The European Parliament ( Parliament ) has agreed the terms of the Network and Information Security…
The EDPS recommends caution over passenger name record directive By Rhiannon Webster In a statement published this month the European Data Protection Supervisor (the EDPS ) advised…
The EDPS issues alert on intrusive surveillance By Rhiannon Webster The EDPS has published an opinion (the Opinion ) regarding intrusive surveillance technology in…
ICO reveals its 'most read' blogs of 2015 By Rhiannon Webster In December the ICO produced a list of its top 5 most popular stories of 2015: 5…
ICO prosecutions By Rhiannon Webster To view the ICO Prosecutions discussed below, please click here …
ICO monetary penalties By Rhiannon Webster To view any of the Monetary Penalty notices discussed below, please click here …
ICO undertakings By Rhiannon Webster To view any of the ICO undertakings discussed below, please click here …
ICO enforcement notices By Rhiannon Webster To view any of the Enforcement Notices discussed below, please click here …
GDPR agreement meets Christmas 2015 deadline By Rhiannon Webster Following the final round of trilogue discussions, political agreement has been reached between the…
Poland: Polish DPA provides Safe Harbor guidance By Rhiannon Webster The Polish Data Protection Authority has confirmed that parties previously relying on the Safe…
Portugal: Portuguese DPA’s new rules on intragroup transfer agreements By Rhiannon Webster The Portuguese Data Protection Authority, the Comissão Nacional de Proteção de Dados (the CNPD ),…
Kazakhstan: Administrative liability for failure to protect information systems containing personal data By Rhiannon Webster A new law entitled 'On Amendments to Certain Legislative Acts of the Republic of Kazakhstan on…
Kazakhstan: Localization of personal data By Rhiannon Webster A new law entitled 'On Amendments to Certain Legislative Acts of the Republic of Kazakhstan on…
Australia: Amendments to data breach notification requirements By Rhiannon Webster In February 2015 an Advisory Report endorsed the implementation of a data breach notification…
Chile: Government publishes updated agenda for digital development By Rhiannon Webster The Chilean government has published its updates to the Digital Agenda 2020…
Information Security and Data Protection Newsletter - February 2016 By Rhiannon Webster The EU Commission has announced political agreement on the formation of a new transatlantic data…
2016 priorities for the European Data Protection Supervisor By Rhiannon Webster The EDPS, the European data protection advisory body for EU data protection legislation, policy and…
ECtHR ruling on employer monitoring of employee activity By Rhiannon Webster What does this cover? In Bărbulescu v Romania (61496/08 [2016] ECHR 61) the European Court of…
CMA reviews consumer law compliance in the cloud storage sector By Rhiannon Webster The Competition and Markets Authority (CMA) has carried out a review of the cloud storage sector…
Tech companies argue new investigatory powers proposals weaken data security By Rhiannon Webster Critical submissions against aspects of the Government's investigatory powers proposals have been…
eCommunications and Mobile Devices guidelines issued by European Data Protection Supervisor By Rhiannon Webster What does this cover? The EDPS issued two sets of guidelines on data protection (Guidelines) for…
A political campaigning warning from the ICO ahead of the EU referendum By Rhiannon Webster The ICO has issued a warning to political campaigning groups in a recent blog, entitled 'Nine…
ICO pursues wider sentencing powers for data offenders By Rhiannon Webster The ICO is once again seeking tougher data theft sentencing powers following the Sindy Nagra data…
Mandatory caller IDs proposed to tackle "scourge of marketing nuisance calls" By Rhiannon Webster In response to what the government has dubbed, a "scourge of nuisance calls", it has announced…
E-Privacy under review by the European Commission By Rhiannon Webster The European Commission Work Programme of 2015 reported that an evaluation of the E-Privacy…
Government urges EU not to increase Digital Platform regulation By Rhiannon Webster We reported in October 2015 on the European Commission's (EC) consultations on: (1) 'Geo-blocking…
Article 29 Working Party updates applicable law opinion By Rhiannon Webster The Article 29 Working Party (WP29), the body made up of the ICO and its European equivalents,…
ENISA publishes data threat report By Rhiannon Webster ENISA, the European 'cyber-security' agency, have issued a report (the Report) which analyses in…
ICO / YouGov poll warns data breach companies face "long-lasting reputational damage" By Rhiannon Webster In an ICO press release issued this month, the ICO had some harsh words for companies that “play…
ICO reflects on 10 years of data protection By Rhiannon Webster 28 January 2016 marks the anniversary of the Council of Europe’s Convention 108 on the protection…
ICO unveils business self assessment tool By Rhiannon Webster The ICO have unveiled a new data protection compliance self-assessment tool (the Tool) for small…
ICO undertakings By Rhiannon Webster What does this cover? To view any of the undertakings discussed below, please click here …
ICO enforcement notices By Rhiannon Webster What does this cover? To view any of the enforcement notices discussed below, please click here …
ICO monetary penalties By Rhiannon Webster What does this cover? To view any of the monetary penalties discussed below, please click here …
EU GDPR discussion at CPDP conference By Rhiannon Webster What does this cover? At the Computers, Privacy & Data Protection conference in Brussels a…
Turkey – Definition of personal data examined by Turkish Constitutional Court By Rhiannon Webster What does this cover? In a recent case (decision number 2015/32) before the Turkish…
Spain – Failure of a marketing opt-out function By Rhiannon Webster What does this cover? On 1 December 2015 the Spanish Data Protection Authority (DPA) issued a…
Spain – Spanish DPA informs EU DPAs of Google privacy policy progress By Rhiannon Webster What does this cover? On 16 December 2015 the Spanish Data Protection Agency (DPA) participated…
Ireland – Irish Data Protection Commissioner produces new guidance on CCTV By Rhiannon Webster In recent years, the capabilities of CCTV have greatly improved and in addition to recording images…
Ireland – Irish Data Protection Commissioner issues guidance note on the use of body worn cameras By Rhiannon Webster What does this cover? The use of Body Worn Cameras (BWCs) has increased dramatically over the…
France – French Digital Republic bill: in anticipation of the GDPR By Rhiannon Webster What does this cover? After years of debates and further to a public consultation held last…
Russia – Russian data protection authority to increase audits in 2016 By Rhiannon Webster What does this cover? In October 2015 we reported on the Russian Data Localization Law (the Law)…
Qatar – Draft privacy law referred to advisory council By Rhiannon Webster What does this cover? Following a Cabinet meeting chaired by the Prime Minister and the Minister…
The Netherlands – More stringent data protection law and a DPA that is ready to act in 2016 By Rhiannon Webster The start of 2016 has brought many important data protection developments in the Netherlands.
Romania – European Court of Human Rights rules no violation of convention in a case of access to correspondence By Rhiannon Webster What does this cover? In the case Barbulescu v Romania the European Court of Human Rights (the…
Ireland – Independence of the Irish Data Protection Commissioner is called into question By Rhiannon Webster What does this cover? Following a series of judgments (including the Commission v Germany…
Malaysia – Draft standards on data security, retention and integrity produced by Malaysian PCPD By Rhiannon Webster What does this cover? In August 2015 we reported on the Malaysian Personal Data Protection…
Taiwan – Amendments to personal data protection law By Rhiannon Webster What does this cover? The Office of the President has ordered that a number of changes (the…
Japan – New Personal Information Protection Commission to be established By Rhiannon Webster What does this cover? Under the Use of Numbers to Identify a Specific Individual in the…
Singapore – Government info-communications and media restructure By Rhiannon Webster What does this cover? On 18 January 2016 Singapore's Ministry of Communications and Information…
Ireland – Commercial use of drones in Ireland By Rhiannon Webster What does this cover? The Office of the Data Protection Commissioner (ODPC) has released a…
Information Security and Data Protection Newsletter - March 2016 By Rhiannon Webster New EU Data Protection Regime – what are the implications for employers as data controllers? …
ICO publishes revised privacy notices code of practice for consultation By Rhiannon Webster The ICO have published a revised privacy notices code of practice (the Proposed Code) for…
Committee, police and HMRC give view on investigatory powers proposal By Rhiannon Webster In last month's alerter we reported that critical submissions against aspects of the Government's…
ICO publish small business guide to IT security By Rhiannon Webster The ICO have updated its small business IT security guide (the Guide) on how to keep IT systems…
Google confirm right to be forgotten should be applied to all searches made from within the EEA By Rhiannon Webster Google has been part of a long running-battle with EU regulators regarding requests to delist…
ICO publishes interim guidance on cross-border data transfers By Rhiannon Webster The ICO has published interim guidance on cross border transfers in light of the Schrems decision…
EDPS publish 'Umbrella Agreement' opinion By Rhiannon Webster In September 2015 the European Commission announced the finalisation of an EU-US data agreement…
House of Commons Committee releases report on the 'Big Data Dilemma' By Rhiannon Webster On 12 February 2016 the House of Commons Select Committee on Science and Technology (the Committee)…
ICO produce Wi-Fi analytics guidance By Rhiannon Webster The ICO have produced guidance on Wi-Fi analytics usage; covering the DPA compliant use of location…
ICO blogs on stopping and identifying nuisance call companies By Rhiannon Webster What does this cover? The ICO has blogged on its work to prevent nuisance calls, confirming its…
Surveillance Camera Commissioner publishes self assessment tool and certification scheme By Rhiannon Webster The Surveillance Camera Commissioner (SCC) was set up to further the CCTV regulatory aims under the…
European Economic and Social Committee release view on EC's digital strategy By Rhiannon Webster What does this cover? In early May 2015 the EC revealed its "Communication on a Digital Single…
ICO publish rights for the future 3 year plan By Rhiannon Webster On 22 February 2016 the ICO announced the publication of its 2016-2019 plan.
EU-US Privacy Shield update By Rhiannon Webster On 2 February the EU Commission announced that political agreement had been reached on the…
ICO undertakings - March 2016 By Rhiannon Webster On 26 February 2016 the British Red Cross signed an ICO undertaking committing the organisation to…
ICO enforcement notices - March 2016 By Rhiannon Webster On 28 February 2016 the ICO reported that it had issued AVSL a "STOP" order for breaches of the…
ICO monetary penalties - March 2016 By Rhiannon Webster What does this cover? To view any of the monetary penalties discussed below, please click here …
GDPR update - March 2016 By Rhiannon Webster What does this cover? Following the informal agreement of the Council of the EU (the Council),…
WP29 release action plan concerning the implementation of the GDPR By Rhiannon Webster What does this cover? In response to the pending implementation of the GDPR, the WP29 have…
UK confirms that it will not opt-in to Article 43a of the GDPR By Rhiannon Webster In a written statement (the Statement) to both the House of Commons and the House of Lords, the UK…
Germany – Cookies opt-out mechanism deemed sufficient to constitute consent By Rhiannon Webster What does this cover? Within the context of the EU Directive on Privacy and Electronic…
Romania – Romanian Data Protection Authority issues a new guide for completion of notification forms By Rhiannon Webster What does this cover? Following the adoption of the Romanian Data Protection Authority's (the…
Spain – Security audits to medium and high level security files made by telephone By Rhiannon Webster What does this cover? The Spanish Data Protection Agency (the SDPA) has been informed that some…
Germany – Consumer associations to have right to sue companies for breach of Data Protection Laws By Rhiannon Webster The amendment to the Act on Injunctive Relief (Unterlassungsklagengesetz) (the Act) offers better…
Turkey – Turkey ratifies Council of Europe Convention on automatic processing of personal data By Rhiannon Webster What does this cover? On 18 February 2016 the Law on Ratification of the Convention for the…
The Netherlands – Dutch Data Protection Authority focuses on the protection of patient data in health care facilities By Rhiannon Webster The Dutch Data Protection Authority (the DDPA) has insisted that extra attention be afforded to the…
Italy – Italian Supreme Court ruling on 'silent' telemarketing calls By Rhiannon Webster Italy's Supreme Court has upheld a decision of the Italian Data Protection Authority which stated…
Austria – Changes to Austrian law will be required to implement EU-US Privacy Shield By Rhiannon Webster What does this cover? Last month a new EU-US data transfer regime to replace Safe Harbor, the…
Belgium – Facebook granted appeal in case against Belgian Data Protection Authority By Rhiannon Webster In December 2015 we reported on the preliminary ruling by the Brussels court against Facebook for…
France – Facebook ordered to correct a number of breaches under the French Data Protection Act By Rhiannon Webster By way of its Decision No…
Turkey – 2014 version of Draft Data Protection Bill to be enacted in 2016 By Rhiannon Webster A revised version of Turkey's Draft Data Protection Bill (the Draft Bill), first proposed in 2014,…
Hungary – Hungarian Data Protection Authority announces enforcement priorities for 2016 By Rhiannon Webster In October 2015 we reported on the Recommendations of the Hungarian Data Protection Authority (the…
Germany – Independent status for German Data Protection Authority By Rhiannon Webster The German Data Protection Authority (the GDPA) welcomed in the new year by establishing itself as…
Information Security and Data Protection Newsletter - April 2016 By Rhiannon Webster Welcome to our new look data protection and IT security alerter, and there is no better way to…
Case law on establishment under the European Data Protection Directive By Rhiannon Webster Where a data controller is operating in different member states, it raises the question of whether…
Information Security and Data Protection Newsletter - May 2016 By Rhiannon Webster The countdown has begun…
The European General Data Protection Regulation: Insurance Industry By Rhiannon Webster This guide have been written to provide an overview of the impact that DAC Beachcroft expects the…
The European General Data Protection Regulation: Financial Services Industry By Rhiannon Webster This guide have been written to provide an overview of the impact that DAC Beachcroft expects the…
Brexit: where does that leave the UK and the GDPR? By Rhiannon Webster The outcome of the UK's referendum on its membership of the European Union has left many…
Information Security and Data Protection Newsletter - June 2016 By Rhiannon Webster On the 25 May 2016, the General Data Protection Regulation ("GDPR") came into force…
GDPR Deep Dive: Profiling in the Insurance Industry By Rhiannon Webster The new rules on profiling are likely to be one of the areas of the General Data Protection…
France - CNIL releases its inspection program for 2016 By Rhiannon Webster On the 12 May the French data protection authority (“ CNIL ”) announced its annual inspection…
Italy - Italian DPA authorises the use of “smart” video software in production plants By Rhiannon Webster The Italian data protection authority (the " Garante ") has recently announced that it has…
Sweden - Swedish DPA issues guidance for GDPR compliance By Rhiannon Webster On the same day the GDPR was published in the Official Journal of the European Union, the Swedish…
Serbia - Regulating collection and processing of sensitive health data in Serbia By Rhiannon Webster Regulation of the use of sensitive health data by public and private actors is fast becoming a hot…
Turkey - Ratifies 2001 Convention Protocol By Rhiannon Webster Turkey has taken a further step towards alignment with the rest of Europe by ratifying in its…
Germany - German regulators want right of action against EU adequacy decisions By Rhiannon Webster The German Federal and State Commissioners (the " Commissioners ") have adopted a resolution…
Argentina - Argentinian DPA signals shift towards more proactive approach By Rhiannon Webster The Argentinian National Directorate for Personal Data Protection (" NDPDP ") has recently…
Hong Kong - Revised guidance issued by Hong Kong Privacy Commissioner By Rhiannon Webster The Hong Kong Privacy Commissioner has issued a revised Code of Practice on Human Resource…
Australia - Consultation on Big Data guidance launched By Rhiannon Webster In his speech on 16 May at the opening of the 2016 Privacy Awareness Week in Australia, the…
France - Agreement reached on the French Digital Bill By Rhiannon Webster On 30 June, 2016, a joint committee reached an agreement on the French Digital Bill, i.e…
Serbia - Regulating collection and processing of sensitive health data in Serbia (1) By Rhiannon Webster Regulation of the use of sensitive health data by public and private actors is fast becoming a hot…
Singapore - Guide to handling data access requests issued By Rhiannon Webster With the aim of providing businesses with greater clarity as to how to respond to data access…
Philippines - Consultation on new implementation rules and regulations for 2012 Privacy Act By Rhiannon Webster On 20 June 2016, the Philippines’ National Privacy Commission (“ NPC ”) released, for public…
China - New provisions released regulating the use of apps By Rhiannon Webster On 28 June 2016, the Cyberspace Administration of China (the “ CAC ”) released the provisions on…
Belgium - Belgian Privacy Secretary sets out data protection priorities By Rhiannon Webster On 2 June, the Belgian Secretary of State for privacy presented a policy note setting out his…
In-depth analysis: Automated decision making, connectivity and ethics By Hans Allnutt, Craig Dickson, Rhiannon Webster Connectivity has the potential to usher in a whole new era of consumer-insurer relationships, but…
In-depth analysis: The many-headed hydra of fraud By Kate Abrahams, Catherine Burt, Rhiannon Webster, David Williams, Nick Young The continuing drive to tackle insurance fraud has met with an encouraging degree of success in…
Italy – Commercial Information Code of Conduct soon to enter into force By Rhiannon Webster The Italian code of conduct and professional practice applying to data processing for the purposes…
The European General Data Protection Regulation - a guide for businesses located in the United States By Rhiannon Webster The European General Data Protection Regulation…
The European General Data Protection Regulation: An Overview of the Key Changes and Potential Impact By Rhiannon Webster This guide have been written to provide an overview of the impact that DAC Beachcroft expects the…
Bermuda – New Personal Information Protection Bill tabled By Rhiannon Webster It was announced on 1 July that a new Personal Information Protection Bill (the " Bill ") had been…
Information Security and Data Protection Newsletter - July/August 2016 By Rhiannon Webster Herewith, your back to school edition of our data protection alerter…
Summer 2016 cases on multijurisdictional data processing By Rhiannon Webster There have been a number of recent cases on the way both European law and law in other…
Information Security and Data Protection Newsletter - December 2016 By Rhiannon Webster, Ceri Eaton After an uncertain summer concerning the future of the GDPR, the autumn has seen some clarity on…
Updates from across the world By Rhiannon Webster 2016 has been an interesting year for the data protection world, with Safe Harbor being struck…
The European General Data Protection Regulation - a guide for businesses outside of the EU By Rhiannon Webster, Hans Allnutt The European General Data Protection Regulation - a guide for businesses outside of the EU.
Information Security and Data Protection Newsletter for Financial Services April 2017 By Rhiannon Webster As we all work with our businesses to prepare for the GDPR, the guidance is trickling through…
Cyber Insurance, Privacy and Data Security Newsletter - May 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill Welcome to the latest edition of our Cyber Insurance newsletter…
Information Security and Data Protection Newsletter for Financial Services June 2017 By Rhiannon Webster
Cyber Insurance, Privacy and Data Security Newsletter - July 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill We are delighted to share Closing the Gap: Insuring your business against cyber threats with you…
Cyber Insurance, Privacy and Data Security Newsletter - October 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill Welcome to the latest edition of our Cyber Insurance newsletter…
Cyber Threat Advisory Summary - Data Destroying Malware Post WannaCry & NotPetya By Hans Allnutt, Rhiannon Webster, Patrick Hill After the devastating effects of the WannaCry and NotPetya data destroying malware we have seen a…
Cyber Threat Advisory Summary - ThreatInformer By Hans Allnutt, Rhiannon Webster, Patrick Hill Current technical risks provided by ThreatInformer, include Drupal - Access Bypass and Adobe…
Facebook ordered to pay over €1m in fines for data violations By Hans Allnutt, Rhiannon Webster, Patrick Hill The Spanish Data Protection Agency (" SDPA ") has fined Facebook for violating Spanish Data…
Accountancy Newsletter October 2017 By Richard Highley, Ross Risby, Suzanne Wharton, Rhiannon Webster, Francesca Muscutt, Gareth Robinson, , William Naylor DAC Beachcroft's Accountancy newsletter features topical news and insights for our clients and…
GDPR: how accountancy firms can prepare for the enhanced regime By Rhiannon Webster, Francesca Muscutt Data protection law in the UK is set for a radical overhaul in 2018 and accountancy firms should be…
Personal Data: the new oil and its toxic legacy under the General Data Protection Regulation By Hans Allnutt, Rhiannon Webster The General Data Protection Regulation, which comes into force on 25 May 2018, represents a seminal…
GDPR: how can businesses prepare? By Francesca Muscutt, Rhiannon Webster Data protection law in the UK is set for a radical overhaul in 2018 and companies should be…
Cyber Insurance, Privacy and Data Security Newsletter - December 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill As you may know, DAC Beachcroft recently launched Personal Data: the new oil and its toxic legacy…
ThreatInformer - December 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill Importance of Breach Disclosure According to Bloomberg, Uber suffered a major data breach in…
New Cyber Protocol Rules in New York By Hans Allnutt, Rhiannon Webster, Patrick Hill The New York Department of Financial Services ("NYDFS"), which is responsible for the regulation of…
Cyber Threat Advisory Summary - December 2017 By Hans Allnutt, Rhiannon Webster, Patrick Hill NCC Group malware researchers recently published a blog post outlining the technical details of a…
Bridging the gap between SIMR and SM&CR By David Sims The Senior Managers and Certification Regime (SM&CR) aims to create a culture of accountability…
Bridging the gap between the SIMR and SM&CR By David Sims The Senior Managers and Certification Regime (SM&CR) aims to create a culture of accountability…
Forms of Authority for Medical Records post-GDPR By David Williams, Peter Allchorne, Rhiannon Webster In defending personal injury claims, the ability of compensating insurers and their representatives…
GDPR: Top 5 Tips By Rhiannon Webster DAC Beachcroft's Head of Information Law, Rhiannon Webster, gives her top 5 tips for organisations…
50 predictions: Cyber and Data Risk By Hans Allnutt, Rhiannon Webster Cumulative legal costs in data theft and privacy claims will be a significant exposure for insurers…
How Artificial Intelligence will change your working life By Tim Ryan, Jonathan Deverill, Rhiannon Webster On Tuesday 12 March, we brought together Rob McCargow, Director of AI at PwC, A-B, Sophia, Director…
Cyber and Information Law Newsletter: Issue 1 - Round up of 2019 By Jade Kowalski, Rhiannon Webster, Ceri Fuller, Khurram Shamsee, Sophie Devlin, Christopher Air Welcome to the relaunch of our cyber and information law round up…
Cyber and Information Law Newsletter: Issue 1 - Enforcement By Jade Kowalski, Rhiannon Webster French data protection regulator fines Google 50 million euros for GDPR breaches On 21 January…
Cyber and Information Law Newsletter: Issue 1 - Brexit By Rhiannon Webster, Given the uncertainty around both the timing and form of Brexit, organisations whose businesses…
Cyber and Information Law Newsletter: Issue 1 - General Information By , Rhiannon Webster Japan granted an Adequacy Decision On 23 January 2019, the European Commission adopted its…
The compliance change all regulated firms need to know about By David Sims Most FCA solo-regulated firms will have to implement SMCR by the end of this year…
Information Commissioner Office – enforcement action for nuisance calls and emails By Rhiannon Webster The ICO continues to focus on Data Subject Access Requests (DSARs) and marketing calls and emails.
COVID-19: Cyber security and resilience By Patrick Hill, Rhiannon Webster In one of the most challenging weeks for businesses across the UK, the Information Commissioner’s…
A warning for insolvency practitioners – take care when handling personal data By Rhiannon Webster, Giles Hindle, The Financial Conduct Authority, the Information Commissioner’s Office and the Financial Services…
