General Data Protection Regulation

GDPR Guidelines – Is The Article 29 Working Party Going Too Far?

David Smith

The Article 29 Working Party has been working overtime to publish guidelines on a wide range of GDPR requirements. Not surprisingly, given the impact of the GDPR, there have been calls for even more guidance but the data protection authorities that make up the Working Party have limited resources and it is not always easy Read More

No Comments

WP29 guidelines on transparency under GDPR

Nigel Parker

Shortly before the Christmas break, the Article 29 Working Party (WP29) published keenly awaited draft guidelines on transparency and consent under the GDPR. These guidelines will be closely scrutinised. Privacy notices, requests for consent, how an organisation deals with data subject enquiries regarding the processing of personal data, and how an organisation communicates information in Read More

No Comments

WP29 draft guidelines on profiling and automated decision-making under the GDPR

Ondrej Kramolis

On 17 October, the Article 29 Working Party (WP29) published new draft guidelines on profiling and automated decision-making under the GDPR (the Guidelines). The Guidelines identify two benefits of profiling – increased efficiencies and resource savings and note that profiling and automated-decision making can be used to tailor services and products to align with individual Read More

No Comments

A first look at the New UK Data Protection Bill

Praveeta Thayalan

The new UK Data Protection Bill (the Bill) was published on 14 September 2017 and, once enacted, will repeal the Data Protection Act 1998 (the DPA). The Bill preserves parts of the DPA and implements the standards of the General Data Protection Regulation (the GDPR) across the categories of data processing within the scope of Read More

No Comments

A deep dive into data processing at work: DPA advice on GDPR

LaurieAnne Ancenys

Laurie-Anne Ancenys of Allen & Overy looks at the recently adopted DPA guidance, which states that employers are unlikely to be able to rely on employee consent in the future. This article was first published in Privacy Laws & Business International Report, August 2017, www.privacylaws.com. You can read the full article here: A deep dive into data Read More

No Comments

Do we learn anything new from the UK Government’s Statement of Intent?

Charlotte Mullarkey

On 7 August the UK Government’s Department of Digital, Culture, Media and Sport published a Statement of Intent in relation to the new Data Protection Bill. This comes only a month before we were led to expect to see the draft Bill itself. At first glance, notwithstanding some of the headlines in the press, it Read More

No Comments