A recent case concerning Google’s use of cookies has had important implications for the development of UK class actions in privacy cases. This case will be of particular importance to those whose work involves processing and retaining clients’...
GDPR and ePrivacy
GDPR stands for the General Data Protection Regulation and it comes into force on 25th May 2018. Quite simply, it’s a new, updated data protection law enabling consumers to take back control of who uses their personal information and when. For those with businesses you’ll need to make sure your data is managed correctly and comply else you face heavy penalties.
Here at Clayden Law this is a key area of expertise and we're working with organisations across the UK (and further afield) - helping them to prepare for this major legislative change. But it doesn't stop there... the ePrivacy Regulations are due at the same time...
We've collected together all of our blogs, guides and case studies, to give you a bit more information. If you'd like to speak to someone about this then you can contact us here. To keep up to date with all the news, you can sign up for our newsletter by clicking here.
Latest News
This article continues to look at how UK businesses will be affected by changes in data protection law arising from a no-deal Brexit. How can we comply with both EU and UK data protection law post-Brexit? Complying with the dual legal regime...
This article looks at how UK businesses will be affected by changes in data protection law arising from a no-deal Brexit. UK becomes a ‘third country’ The headline point is that once we’re out without a deal, the UK becomes a...
The management of employee, job applicant and staff data, under the GDPR, is a complex subject. Back in July 2018 we wrote about the subject with employment law specialists mpmlegal , to provide guidance on the ways ‘consent isn’t...
The Ministry of Justice has announced changes, coming in on 1st October 2019, to the Civil Procedure Rules. These relate to the rights of data subjects to claim damages for breaches of data protection and privacy legislation. Rather than only applying...
Many people unfamiliar with the concepts of adtech, or programmatic advertising, will nevertheless experience it online firsthand daily. Adtech is a collective term. It refers to digital tools that deliver targeted advertising to consumers...
The Fundraising Regulator has issued 59 UK charities with regulatory notices, as well as reporting matters to the ICO and the Charity Commission. You can view a full list of the charities that have breached the Code of Fundraising Practice here . A...
It stands to reason that organisations invest time and money in seeking out the best and most effective technologies for managing customer contact and, in particular, identification and authentication. HMRC, for example - not known for its advanced or...
With the Prime Minister seemingly determined to take the UK out of the EU without a deal, the threat/promise of a no-deal Brexit is looking increasingly likely to become a reality on 31 October. The commercial and economic implications of a no-deal...
Over the last few months we have written about the increased chance of class actions relating to data breaches. You can read this in GDPR - one year on and GDPR - waiting for the flood . But how likely is this in a wider technology (and, in particular,...
In the last week there have been two significant fines signalled by the ICO under the GDPR. A complete list of fines issued under GDPR, since its introduction in May 2018, can be seen here . Now we are a whole year on from its introduction what have...
Less than a day after the technology world was shocked to see British Airways face a potential £183m fine for a data breach, the ICO has issued a notice of its intention to impose a £99.2m fine on international hotel group Marriott after...
The Information Commissioner’s Office has announced its intention to impose its biggest penalty to date and the first to be made public under the new GDPR rules. The proposed fine is £183m and relates to a data breach in 2018. In June 2018...
With now over 1 year since the GDPR came into force and with the benefit of insight into early enforcement, it is a good time for organisations to carry out a review of their compliance with the new regulation. The big question which many have been asking is...
On 15th April, 2019, the Directive on Copyright in the Digital Single Market was approved by all EU legislative bodies. This aims to “modern[ise] EU copyright rules for European culture to flourish and circulate”. Member states are required to...
The European Commission has fined four consumer electronics manufacturers €110 million for forcing online retailers to adhere to fixed or minimum resale prices. Asus, Denon & Marantz, Philips and Pioneer have all been fined following a warning from...
The Cyber Security Breaches Survey is a quantitative and qualitative survey by the DCMS of UK businesses and charities. It is designed to help organisations to understand the nature and significance of the cyber security threats they face, and what...
The Financial Conduct Authority has just published an Industry Insights document on cyber security . Whilst not containing any formal guidance or rules, the Insights highlight the risks of cyber attacks to FCA regulated firms and confirms industry best...
Cisco has just published a report stating that GDPR compliant companies experience shorter delays in their sales cycle, as it relates to customer data and fewer data breaches. Cisco’s Director of Privacy, Robert Waitman explained this trend, in...
When GDPR first came into force firms around the world stated that ‘time would tell’ in terms of enforcement and how it would work in practice. Starting in October 2018 the message has been clear - the ICO intends to come down hard on those...
The European Commission announced that it has adopted an ‘adequacy decision ’ concerning Japan in relation to private sector organisations. This simplifies the process for transferring personal data between the EU and Japan. The GDPR applies...
Having reviewed the changing role of the processor and controller, post GDPR, we look at some of the other changes and challenges, since May 2018. Panic over? Remember the GDPR-related emails that kept pinging up in your inbox throughout May 2018...
In the previous articles we examined the changing landscape of processors and controllers under GDPR and then some of the challenges facing processors, post GDPR. We continue our examination of why the introduction of the GDPR has encouraged service...
In the last article we examined the changing landscape of processors and controllers under GDPR. We continue our examination of why the introduction of the GDPR has encouraged service providers to re-brand themselves as controllers. Processing...
On 25 May 2018 the EU General Data Protection Regulations (GDPR) came into force, reshaping the way personal data is handled across every sector, and impacting boardrooms and consumers alike. A few months on, with GDPR now bedded in, some surprising...