2018, Examples, Exercises, Personal data and Security

The Information Commissioner’s Office Issues UK Department for Education with Formal Reprimand

Hunton Privacy

NOVEMBER 7, 2022

On November 2, 2022, the ICO issued to the UK Department for Education (“ DfE ”) a formal reprimand following an investigation into the sharing of personal data stored on the Learning Records Service (“ LRS ”), a database which provides a record of pupils’ qualifications that the DfE has overall responsibility for.

Education

Education Personal data Access IT

GPEN and National DPAs Publish Sweep Results on Privacy Accountability

Hunton Privacy

MARCH 11, 2019

On March 5, 2019, the Global Privacy Enforcement Network (“GPEN”), a global network of more than 60 data protection authorities (“DPAs”) around the world, published the results of its 2018 intelligence gathering operation on organizations’ data privacy accountability practices (the “Sweep”).

Privacy

Privacy Data Privacy GDPR Personal data

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. Accordingly, the CCPA was passed unanimously on June 28, 2018 by the California legislature and signed by the governor the same day.

Privacy

Privacy Sales Compliance Cybersecurity

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. Accordingly, the CCPA was passed unanimously on June 28, 2018 by the California legislature and signed by the governor the same day.

Privacy

Privacy Sales Education Compliance

Fixing Data Breaches Part 2: Data Ownership & Minimisation

Troy Hunt

DECEMBER 19, 2017

In part 2 of the series, I want to talk about data ownership and minimisation and this is all about reducing the impact on individuals and organisations alike when things do go wrong. Who Owns Our Personal Data? The owner can request the organisation provide them with a copy of their data ("right of access").

Data breaches

Data breaches Personal data GDPR Data collection

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

Relatively recent advances in technology — smartphones and social media, in particular — have allowed businesses to collect, store, and find ways to monetize far more personal data than ever before. For example, in John B. The principle of proportionality in civil discovery is hardly new.4

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

What follows below is an edited version of the debate in the House of Lords of the Second Reading of the Data Protection Bill, held on 10 October. The Bill provides for her to continue to provide independent oversight, supervising our systems of data protection, but we are also significantly enhancing her powers.

GDPR

GDPR Personal data Government IT

European Commission Publishes Draft UK Adequacy Decisions

Data Matters

FEBRUARY 19, 2021

The EU GDPR prohibits the transfer of personal data to a country outside the European Economic Area ( EEA ) (otherwise known as a third country ) that is not considered to provide an ‘adequate level’ of data protection by the EC unless ‘appropriate safeguards’ are implemented (e.g., consent of the data subject).

GDPR

GDPR Personal data Privacy Access

GDPR: lawful bases for processing, with examples

IT Governance

MARCH 13, 2020

First published June 2018. Under the EU GDPR (General Data Protection Regulation) , you need to identify a lawful basis before processing personal data. Do you always need individuals’ consent to process their data? For the purposes of legitimate interests pursued by the data controller.

GDPR

GDPR Personal data Compliance Marketing

GDPR: lawful bases for processing, with examples

IT Governance

JUNE 15, 2018

Like the Data Protection Act 1998 (DPA 1998) that it superseded, the General Data Protection Regulation (GDPR) sets out six lawful bases for processing personal data. To comply with the data controller’s legal obligations. To protect the data subject’s vital interests.

GDPR

GDPR Personal data Compliance Privacy

Information Management Today

The Information Commissioner’s Office Issues UK Department for Education with Formal Reprimand

GPEN and National DPAs Publish Sweep Results on Privacy Accountability

Trending Sources

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Fixing Data Breaches Part 2: Data Ownership & Minimisation

The Burden of Privacy In Discovery

The debate on the Data Protection Bill in the House of Lords

European Commission Publishes Draft UK Adequacy Decisions

GDPR: lawful bases for processing, with examples

GDPR: lawful bases for processing, with examples

Stay Connected