News & Analysis as of

Data Protection Information Commissioner's Office

UK Data Protection Authority Publishes International Strategy

by King & Spalding on

The United Kingdom’s Information Commissioner’s Office (“ICO”) has published its international strategy for 2017-2021, which sets out the UK’s strategy for its relationship with the European Union on data privacy matters...more

DeepMind Deal with NHS Trust Reveals Privacy Concerns

Back in 2015, DeepMind, a Google company, signed a deal with the Royal Free NHS Foundation Trust. The deal allowed DeepMind access to 1.6 million patients health information as well as the ability to develop an app called...more

ICO Publishes International Strategy

by Reed Smith on

The Information Commissioner’s Office (“ICO”) has released its International Strategy 2017-2021 (“Strategy”). The Strategy supports its Information Rights Strategic Plan, which we reported on earlier this year. The first...more

New UK Subject Access Code of Practice

by McGuireWoods LLP on

This month the ICO updated its Subject Access Code of Practice, which gives guidance to data controllers on how to respond to subject access requests from data subjects. The Code itself is not legally binding, but provides...more

Subject Access Requests: ICO Publishes Updated Guidance

by Reed Smith on

The Information Commissioner’s Office (ICO) has published an updated data subject access code of practice (the Code) to reflect developments following two major Court of Appeal judgments published in early 2017: Dawson-Damer...more

ICO’s Strategic Plan for the ‘New Frontier’ of Data Protection

by Reed Smith on

The ICO recently published its Information Rights Strategic Plan for 2017 – 2021 (the ‘Plan’). Within it, the ICO Commissioner, Elizabeth Denham, asserts that we are on the “edge of a new frontier,” and that the data...more

Global Privacy & Cybersecurity Update Vol. 14

by Jones Day on

New York Attorney General Announces Record Number of Data Breach Notices in 2016 - On March 21, 2017, the New York Attorney General's Office announced that it received 1,300 reported data breaches in 2016—a 60 percent...more

GDPR Compliance Update: Which Government Authorities Have Issued Official GDPR Guidance?

This post provides an update as to the current status of official GDPR-related guidance. With a little under a year remaining until the European Union’s General Data Protection Regulation (GDPR) becomes enforceable, companies...more

UK Parliament Passes New Digital Economy Act

by Hogan Lovells on

The Digital Economy Bill passed into UK law last Thursday 27 April 2017 amidst the flurry of activity known as the “wash up” period before the dissolution of Parliament and ahead of the early general election in the UK to be...more

Meritas Data Protection & Privacy The GDPR - new data governance obligations on businesses

Let’s start with the good news. The current obligation to register with the national data protection authority will be abolished. Along with the fines and criminal offences of failing to do so. In its place, the...more

‘Once in a Generation’ Legislative Changes: the ICO’s Strategy for GDPR Challenges

by Reed Smith on

Information Commissioner Elizabeth Denham has recently given some valuable insights into the Information Commissioner’s Office’s (ICO) General Data Protection Regulation (“GDPR”) strategy. Addressing the House of Lords EU...more

UK ICO Requests Input for Guidance on GDPR Profiling Requirements

by Hogan Lovells on

The UK ICO has published what it describes as a feedback request on profiling and automated decision-making, with the intention that responses will “help inform the UK’s contribution to the WP29 guidelines due to be published...more

Man vs. Machine: the ICO Provides Guidance On Use of Big Data

by Reed Smith on

As the European data protection framework evolves, big data remains a hot topic. Often, what makes up these large data sets is personal data, so it has clear data protection implications. The Information Commissioner’s...more

UK Privacy Regulator Addresses Data Protection Under The GDPR

by King & Spalding on

On Monday, March 6, 2017, the UK’s Information Commissioner’s Office (“ICO”) held its annual Data Protection Practitioners’ Conference. During the conference, Information Commissioner Elizabeth Denham, who was appointed to...more

United Kingdom Privacy Office Issues Guidance on Consent Under GDPR

by Ballard Spahr LLP on

The EU General Data Protection Regulation (GDPR), which takes effect in May 2018, will require companies to reassess their mechanisms for obtaining, tracking, and verifying individuals' consent. Companies will need clear and...more

ICO Seeks Extra Resources for GDPR Enforcement

by Alston & Bird on

On March 13, 2017, Elizabeth Denham, head of the UK data protection authority (“ICO”) publicly expressed her intention to massively recruit new personnel in an effort to be ready for the European (“EU”) general data...more

UK ICO Publishes Guidance on Consent Under GDPR

by Hogan Lovells on

The UK Information Commissioner’s Office has just published draft guidance on consent under GDPR. This is an interesting move given that the Article 29 Working Party has promised guidance on the same topic later this year,...more

Health Company Fined by UK’s Information Commissioner Office

by Hogan Lovells on

Last week, the UK’s Information Commissioner’s Office (ICO) published a monetary penalty notice which fined a private healthcare company, HCA International, £200,000 for its failure to keep sensitive data secure....more

UK Launches Public Consultation on GDPR Consent Guidance

by Alston & Bird on

The General Data Protection Regulation (GDPR) will come into force on 25 May 2018, replacing UK’s Data Protection Act 1998 (DPA). It is yet unclear how Brexit will play out, yet in the meantime the United Kingdom is moving to...more

UK Reaffirms Commitment to GDPR while ICO Increases its International Focus

by Reed Smith on

At the beginning of February, the Minister of State responsible for digital and culture policy, Matt Hancock, reaffirmed the UK’s commitment to implementing legislation mirroring the General Data Protection Regulation (GDPR),...more

Article 29 Working Party Adopts its 2017 Action Plan

by Reed Smith on

In early January, the Article 29 Working Party (WP29) adopted its 2017 Action Plan (Action Plan) on the implementation of the General Data Protection Regulation (GDPR). Amongst the actions proposed, the Action Plan...more

ICO to Assume Telephone Preference Service Responsibility

by Reed Smith on

Effective 30 December 2016, the Information Commissioner’s Office (‘ICO’) will be responsible for recording and maintaining the Telephone Preference Service (‘TPS’) register. The TPS is a free service offered to the...more

UK ICO Issues New Guidance on Privacy Notices

by Locke Lord LLP on

The UK’s Information Commissioner’s Office (ICO), the independent authority responsible for the enforcement of the Data Protection Act 1998 (DPA), has issued a revised code of practice (the Code) on communicating privacy...more

The Subject Access Request That Led to a Security Breach, or Why Having a System to Respond to Access Requests Is Essential

by Reed Smith on

In August, the UK’s data protection regulator, the ICO, fined a Hertfordshire GP practice £40,000 under the Data Protection Act 1998 (“DPA”) after a subject access request (“SAR”) went badly wrong. A lack of process, training...more

United Kingdom to Implement EU General Data Protection Regulation

by Morgan Lewis on

UK Secretary of State Karen Bradley recently confirmed that the United Kingdom will implement the European Union’s General Data Protection Regulation (GDPR), the regulation by which the European Commission intends to...more

57 Results
|
View per page
Page: of 3
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.