ICO
ICO Brings Some Welcome Clarification to the GDPR’s International Transfer Rules
07 September 2018 - Cross-border data transfer , ICO guidance David Smith
One of the challenges thrown up by the GDPR is understanding the interrelation between the extra-territorial scope provisions in Article 3 and the restrictions on international transfer in Chapter V. How, for example, do the international transfer restrictions apply, if they apply at all, to a data controller that has no presence in the EU › Read More
Data Analytics and Political Campaigning – Looking Beyond the Headlines of the ICO’s Investigation
19 July 2018 - data protection , ICO , investigation David Smith
Elizabeth Denham, the Information Commissioner, was in the headlines last week after announcing her intention to impose a record fine of £½million on Facebook and launching her report on “Democracy Disrupted? Personal Information and Political Influence”, a wide ranging and detailed investigation into the complex world of gathering and using personal data for political campaigning. › Read More
ICO guidance on data protection fees – notification is dead, long live registration
06 March 2018 - A&O , Fines , ICO Charlotte Mullarkey
To coincide with the implementation of the General Data Protection Regulation (GDPR), the UK data protection authority, the Information Commissioner’s Office (the ICO) has issued guidance on the new proposed fee arrangement for the registration of data controllers in the UK. Assuming this proposal is approved by Parliament, the new ‘data protection fee’ will come › Read More
A first look at the New UK Data Protection Bill
19 September 2017 - Praveeta Thayalan
The new UK Data Protection Bill (the Bill) was published on 14 September 2017 and, once enacted, will repeal the Data Protection Act 1998 (the DPA). The Bill preserves parts of the DPA and implements the standards of the General Data Protection Regulation (the GDPR) across the categories of data processing within the scope of › Read More
ICO investigation into the Royal Free’s use of patient data used as an opportunity to educate
14 July 2017 - Deepmind , ICO Charlotte Mullarkey
In a case which has wide implications for the health care sector, the ICO has ruled that the Royal Free NHS Foundation Trust failed to comply with the UK Data Protection Act when it provided personal data of about 1.6 million patients to Google DeepMind. The personal data was provided as part of a trial › Read More
ICO Promises to Perform on the International Stage
10 July 2017 - David Smith
Last month I commented on the Information Commissioner’s new Information Rights Strategic Plan which promised that there was more to come, not least an International Strategy for the ICO. Now that this International Strategy has been published it doesn’t disappoint. I must though confess to a certain amount of self interest here. When I was › Read More