Jonathan Armstrong and I return for another episode of Life with GDPR. In the 2020 Morrisons case, the UK Supreme Court ruled that an employer can be legally responsible for data breaches caused by their employees. However, in the particular situation, in that case, the court ruled that Morrisons (the employer) was not liable for the actions of their rogue employee. In this episode, Jonathan Armstrong and I look at the more recent case of Isma Ali v. Luton Borough Council, where the High Court ruled that in committing the data See more +
Jonathan Armstrong and I return for another episode of Life with GDPR. In the 2020 Morrisons case, the UK Supreme Court ruled that an employer can be legally responsible for data breaches caused by their employees. However, in the particular situation, in that case, the court ruled that Morrisons (the employer) was not liable for the actions of their rogue employee. In this episode, Jonathan Armstrong and I look at the more recent case of Isma Ali v. Luton Borough Council, where the High Court ruled that in committing the data security breach actions the rogue employee undertook, she had solely pursued her interests. So the employer was not liable for her conduct.
Some of the issues they consider include: (1) What were the case's underlying facts? (2) What was the court's ruling? (3) Key Takeaways for the data privacy, data protection practitioner, including security measures, data loss prevention, monitoring systems, appropriate policies and procedures, Data Protection Impact Assessment, and more.
Tune in to the #LifewithGDPR podcast episode in #CompliancePodcastNetwork to learn more on #TheCaseoftheRogueEmployee. See less -