ICO Guidance: Special Category Data
On 14 November, the Information Commissioner’s Office published guidance on how special category data should be managed under the EU […]
Data protection
Philosophical belief case on right to copyright fails
Is an argument about the interpretation of a contract protected as a philosophical belief? No, said the Court of Appeal […]
One day less to respond to DSARs!
Under the General Data Protection Regulation (GDPR), individuals can request access to the personal data that employers or other organisations […]
Supreme Court grants Morrisons permission to appeal employee data breach
The Supreme Court has granted Morrisons permission to appeal against the Court of Appeal’s ruling, which found that the supermarket […]
It's getting personal: Potential GDPR breach for employees who check work emails on personal mobiles out of the office
Recent research has revealed that employees who check work emails on their personal phones could be in breach of the […]
GDPR – are your interests legitimate?
Under the GDPR the requirements for consent will be much stricter, particularly in the employment context, where it is generally accepted that the imbalance of power between the employer and employee is likely to invalidate any consent given by the employee.
GDPR: subject access requests – what's new?
Do not be complacent, GDPR is making some subtle but important changes to the well-known system for subject access requests under the Data Protection Act 1998 ……
Three months to go until GDPR comes into force: are you ready?
Has getting to grips with GDPR been lingering on your to-do list for the past year? With only three months […]
Less than half of businesses prepared for GDPR
According to new research carried out by the Department for Digital, Culture, Media & Sports, less than half of all UK businesses and charities are aware of the changes to UK data protection law under the EU's General Data Protection Regulation (GDPR) which will come into force on 25 May 2018.
Surveillance at work
The European Court of Human Rights has found that the covert surveillance of an employee at his or her workplace must be considered to be a considerable intrusion into his or her private life. It entails a recorded and reproducible documentation of a person's conduct at his or her workplace, which he or she, being obliged under the employment contract to perform the work in that place, cannot evade.
Data protection breaches: vicarious liability for employee's criminal actions
WM Morrisons Supermarkets plc have been found vicariously liable for a data protection breach after an employee bearing a grudge deliberately published personal details of 100,000 of its employees on the internet.
GDPR: time to start thinking about the new rules coming into force from 2018
The EU's General Data Protection Regulations (GDPR) will apply in the UK from 25 May next year. With increasingly tighter requirements around how employers must maintain and process personal data, and with the number of fines issued for breaches of UK data protection laws on the increase, many employers are already looking to employ permanent staff dedicated to ensure compliance with the new rules.