GDPR
On 25 May 2018, data protection law changed significantly with the introduction of the EU General Data Protection Regulation (GDPR) and UK Data Protection Act 2018.
Key changes under these laws affect almost all businesses. The rights of EU citizens to control their personal details have been enhanced and new unified obligations have been placed on those dealing with personal data. However, even though the deadline has passed, this is not the end of the compliance journey and organisations must continuously act to ensure they fully comply with the rules.
Previous data protection legislation (the Data Protection Act 1998 in the UK) was based on the Data Protection Directive of 1995 (the 1995 Directive) which set out key legal principles for dealing with personal data. For the past 15 to 20 years, these principles have been adopted in national legislation throughout the EU Member States in different ways, resulting in a disjointed approach to data protection in Europe. The GDPR replaced the 1995 Directive and is directly applicable in every EU Member State. This means there is now a single set of rules to avoid contradictory approaches across the EU.
Data Breach Response Helpline
Data breach reporting is now mandatory in many cases. If you believe your business may have suffered a personal data breach and/or something goes wrong, MacRoberts' Data Breach Response Team is on hand to guide you through the response process. For fast and effective assistance, please call our helpline on 0300 303 1019.
-
-
GDPR EU-US Privacy Shield reviewed! Trump must appoint an Ombudsperson or face action under the GDPR! The European Commission undertook its Second Review of the EU-US Privacy Shield in October 2018 and, in light of the Commission’s publication of its Report in late December, we consider the implications of this report for business. If you share personal data with the US or are considering sharing personal data using the mechanism known as the EU-US Privacy Shield, read on.
-
Brexit Data protection: The implications of Brexit for your business - an update! The ICO and UK Government have both issued guidance in relation to data protection law in the event of a no-deal Brexit, which will be of particular importance to organisations with operations outside the UK.
-
GDPR Did Uber skip more than a taxi line with its latest fine? Uber, the technology company that developed that now well-known ridesharing app, may be considering itself “lucky” to be the recipient of a £385,000 fine from the ICO (the UK’s privacy watchdog) this week.
-
GDPR Marketing industry faces new rules on data The Committee of Advertising Practice (CAP) recently published changes to its CAP Code. These changes were in response to a recent consultation, to ensure the code was aligned with the GDPR and covered data protection issues most relevant to marketing practices.
-
GDPR Go to jail, move directly to jail, and do not collect any personal data Last week, the Information Commissioner’s Office (ICO) – the UK data protection authority – brought proceedings against a motor industry employee who had been accessing personal information from customers without permission. The resulting sentence was six months in prison.
-