Life with GDPR - ICO Gets Serious About Subject Access Requests
Life with GDPR - Clearview AI Fine by the ICO
Life With GDPR: Episode 50-The Experian Enforcement Notice Case
SARS and Liability Issues under GDPR
To help organizations stay on top of the main developments in European digital compliance, Morrison Foerster’s European Digital Regulatory Compliance team reports on some of the main topical digital regulatory and compliance...more
The regulatory landscape for UK employers has evolved significantly over the second half of 2023. New legislation is in force or is due to come into force over the next 12 months, covering a variety of employment-related...more
Welcome to your weekly update from the Allen & Overy Pensions team, covering all the latest legal and regulatory developments in the world of workplace pensions. This week we cover the following topics: HMRC Pensions Tax...more
On 18 August 2023, the UK’s Information Commissioner’s Office (“ICO”) published draft guidance on biometric recognition (the “Draft Guidance”) for public consultation. The Draft Guidance explains how data protection law...more
The Pensions Regulator (TPR) has published a blog post discussing what trustees can do to make climate scenario analysis more ‘decision-useful’. This follows recent criticism of some analysis used by trustees for their annual...more
In a recent letter to the UK law society, the UK Information Commissioner’s Office and the National Cyber Security Centre have provided lawyers with advice about ransomware payments...more
Jonathan Armstrong and I return for another episode of Life with GDPR. In this episode, we took up a fine in the UK by the ICO against Clearview AI and previously discussed other EU countries’ fines against Clearview. Some of...more
In response to the government’s relaxation on COVID-19 restrictions, the UK’s data protection regulator, the Information Commissioner’s Office (the ICO), has published guidance for employers on their data protection...more
Since 2018, the decision-making arsenal of the UK Information Commissioner’s Office (“ICO”) has included the Regulatory Panel, a body tasked with making independent recommendations to the Commissioner regarding proposed...more
As the September 27th deadline to implement the new Standard Contractual Clauses (“SCCs”) approaches, many privacy practitioners are working overtime to help their clients update their standard data processing addenda to...more
Orrick's Cyber, Privacy & Data Innovation and IP Licensing & Technology Transactions groups cover the top 10 things you need to know about the new Standard Contractual Clauses ("SCCs") published today by the European...more
The Information Commissioner’s Office (ICO), the UK’s data protection authority, has recently published updated guidance on an individual’s right to access their personal data. This OnPoint considers the key issues arising...more
On 16 October the UK Information Commissioner (ICO) confirmed that it had imposed a fine of £20m on British Airways (BA) for infringing the GDPR by failing to protect the personal data of approximately 400,000 of its...more
On 21 October 2020 the UK data protection authority (ICO) published a new Right of Access Detailed Guidance (SAR Guidance), following the public consultation on the SAR Draft Guidance (Draft Guidance) which ran from December...more
With all that has happened this year, most of us can’t wait until 2020 is in the rear view mirror. The end of 2020, however, marks the end of the transition period provided, post-Brexit, to allow time for UK businesses and...more
In this month's edition of our Privacy & Cybersecurity Update, we examine the National Institute of Standards and Technology's four principles of the "explainability" of artificial intelligence and the U.K. Information...more
On July 30 the UK ICO published new guidance on AI and data protection. The guidance is intended to provide organisations that are either using or developing artificial intelligence technologies, with practical...more
The Information Commissioner’s Office (ICO) recently issued guidance for employers on the issues they need to bear in mind when considering the introduction of testing as part of their arrangements for returning staff to the...more
The Information Commissioner’s Office (ICO), the UK’s data protection supervisory authority, has recently issued guidance outlining its approach to the enforcement of data protection obligations during the COVID-19 pandemic....more
The United Kingdom’s Information Commissioner’s Office has provided it’s guidance on COVID-19 and data privacy. •Public health messages are not direct marketing. •It’s about being proportionate – if some data processing...more
Employers’ primary concern at this time will be the health and safety of their employees in the wake of what has been declared a global pandemic by the World Health Organization. However, employers should still have regard to...more
In a recently published blog, the Information Commissioner’s Office (“ICO”) provided an update on its review of the adtech sector and noted that, whilst two key organisations are starting to make changes and many have engaged...more
Report on Supply Chain Compliance 3, no. 2 (January 23, 2020) - Two recent enforcement actions shed light on how regulators will enforce GDPR provisions going forward. In one case, the United Kingdom’s Information...more
Organisations offering certain digital services in the United Kingdom (UK) and European Union (EU) should consider the impact of Brexit and their obligations under applicable cybersecurity law....more
Report on Supply Chain Compliance, Volume 2, no. 19 (October 10, 2019) - As the possibility of a ‘no-deal’ Brexit becomes more likely, U.K. organizations are preparing for the worst: a clean and final break from the...more