Category

Data Privacy & Cyber Security

Do I need consent to send marketing to my contacts?

Do I need consent to send marketing to my contacts? Key Contact: Lowri Morgan-Macdonald One of the common misconceptions, particularly since the GDPR came into force in May 2018, is that you always need express opt-in consent in order to send marketing to customers, clients, or other contacts. However, that is not necessarily the case....
Read More

Data Breaches and Implications

Data Breaches and Implications Key Contact: Lowri Morgan-Macdonald Author: Abby Stephens The Information Commissioner’s Office (the ICO), the independent authority responsible for regulating data protection in the UK, has imposed a significant number of fines on companies in recent years for failing to protect customer information. For example, British Airways (BA) was fined £20 million...
Read More

What does Brexit mean for data protection?

What does Brexit mean for data protection? Author: Lowri Morgan-Macdonald Following the end of the Brexit transition period on 31 December 2020, you may be wondering what, if any, steps you need to take in order to ensure that you continue to comply with data protection laws. In this article, we have sought to answer...
Read More

Draft UK adequacy decision finally announced

Draft UK adequacy decision finally announced Author: Lowri Morgan-Macdonald On 19 February 2021, the European Commission finally announced a draft adequacy decision in respect of the UK. This represents a long-awaited and essential step in ensuring that personal data can continue to flow freely from the EU to the UK following the UK’s exit from...
Read More
European Union flags

New Standard Contractual Clauses from the European Commission

New Standard Contractual Clauses from the European Commission Author: Lowri Morgan-Macdonald The European Commission recently published new draft standard contractual clauses (SCCs) for the transfer of personal data to countries outside the EEA. The new SCCs are intended to modernise the currently outdated SCCs and to provide more flexibility, for example by allowing the clauses...
Read More
Person at laptop with GDPR on screen

GDPR at the end of the transition period

GDPR at the end of the transition period Author: Lowri Morgan-Macdonald When the transition period comes to an end after 31 December 2020, the ‘EU GDPR’ will no longer apply to the UK. However, the GDPR will be brought into UK law as the ‘UK GDPR’ to sit alongside the current Data Protection Act 2018....
Read More

Updated ICO Guidance on responding to DSARs

Updated ICO Guidance on responding to DSARs Key Contact: Claire Knowles Author: Rebecca Mahon This month, the Information Commissioner’s Office published updated guidance on dealing with subject access requests. Notably, they have reinstated guidance (which was previously withdrawn) which says that asking an individual to clarify the scope of their request will “stop the clock”...
Read More

Data Protection and Brexit – what steps do you need to take?

Data Protection and Brexit – what steps do you need to take? Key Contact: Rem Noormohamed Author: Lowri Morgan-Macdonald With the end of the transition period (31 December 2020) fast approaching, you should start considering what steps you may need to take to continue to comply with the data protection legislation. What will happen to the GDPR?...
Read More

Does the new cookies guidance take the biscuit?!

Does the new cookies guidance take the biscuit?! Significant changes may be required to the ways that the providers of websites and mobile apps use cookies following the publication by the ICO of guidance on the use of cookies and other similar technologies. The position on the use of cookies and the level of consent...
Read More

No-Deal Brexit and data protection – are you ready?

No-Deal Brexit and data protection – are you ready? Amidst the continued uncertainty and frustration surrounding Brexit, data protection compliance is unlikely to be at the top of your to-do list. However, a no-deal Brexit could have significant implications for how you as a business send, receive and process personal data going forward and you...
Read More
1 2