IT Governance

MARCH 13, 2020

First published June 2018. An ‘affirmative act’ means the data subject has to opt-in – you cannot assume their consent, for example by using pre-ticked boxes on your website. For example, when you process staff data for payroll purposes, contractual obligations will apply, as staff will have signed a contract of employment.

GDPR 92

GDPR Personal data Compliance Marketing 92

IT Governance

JUNE 15, 2018

For tasks carried out in the public interest or exercise of authority vested in the data controller. For example, when you process staff data for payroll purposes, contractual obligations will apply, as staff will have signed a contract of employment. To comply with the data controller’s legal obligations. Legal obligations.

GDPR 70

GDPR Personal data Compliance Privacy 70

Hunton Privacy

AUGUST 12, 2020

On August 11, 2020, the Court of Appeal of England and Wales overturned the High Court’s dismissal of a challenge to South Wales Police’s use of Automated Facial Recognition technology (“AFR”), finding that its use was unlawful and violated human rights. It is not a question of simple multiplication.

Personal data 111

Personal data Risk IT Privacy 111

ARMA International

APRIL 18, 2022

The purpose of this article is to remove the fear and intimidation of domestic and global data protection laws and show how these laws and requirements are consistent with the existing objectives of your records retention schedule and information governance policy. 3 Personal Information Protection and Electronic Documents Act (PIPEDA).

Personal data 100

Personal data GDPR Privacy Records Management 100

Data Matters

SEPTEMBER 29, 2021

To pick just two recent examples of the latter, the EU’s General Data Protection Regulation1 (GDPR) and the California Consumer Privacy Act2 (CCPA) both impose sweeping requirements on businesses with the aim of increasing consumers’ privacy and control over how their personal data is used. For example, in John B.

Privacy 97

Privacy e-Discovery Computer and Electronics e-Delivery 97

Troy Hunt

FEBRUARY 10, 2020

And just a side-note before I jump into those fundamentals: I had a quick flick through the government's eSafety guidance for children under 5 whilst on the plane and it has a bunch of really good stuff. For example, my son teaching kids to code in London a couple of weeks ago: Teaching kids to code at #NDCLondon with @CodeCombat.

Privacy 140

Privacy Access IT Education 140

Data Protection Report

AUGUST 27, 2020

On 11 August 2020, the Court of Appeal ( CA ) handed down its judgement in the case of R (on the application of Edward BRIDGES) v The Chief Constable of South Wales Police. The High Court was wrong to hold that SWP’s Data Protection Impact Assessment ( DPIA ) complied with the requirements of section 64 of the Data Protection Act 2018.

Risk 59

Risk Retail IT GDPR 59