New E-privacy rules progressing through EU

privacy regulations

It’s not just data protection that’s changing next year, the EU are also working on introducing new e-privacy regulations. Proposals for new e-privacy regulations were announced back in January and aim to bring current privacy regulations (e.g. the Privacy and Electronic Communications Regulations in the UK) in line with the GDPR as well as update the …

Read moreNew E-privacy rules progressing through EU

ICO launches dedicated GDPR advice line

GDPR phone helpline

On the 1st November, the Information Commissioner’s Office (ICO) launched a dedicated support helpline for SMEs and charities needing help with the new GDPR data protection changes that are coming next year. The ICO say “the phone service is aimed at people running small businesses or charities and recognises the particular problems they face getting …

Read moreICO launches dedicated GDPR advice line

EU GDPR guidance starting to take shape

waiting for GDPR guidance

There’s a question about whether it’s coming quick enough, but the EU’s Article 29 Working Party appear to be on the role with their GDPR guidance. They have recently published guidance for supervisory authorities (e.g. ICO) on fining and on Data Protection Impact Assessments (DPIA), plus are currently consulting on a couple of other pieces …

Read moreEU GDPR guidance starting to take shape

GDPR administrative fines and level playing field across Europe

GDPR level playing field

The Article 29 Working Party (all the EU regulators) have published guidance to help statutory bodies (regulators such as the ICO) in their deliberations over what action to take when a breach of the GDPR data protection rules occurs by a Data Controller or Data Processor. Of course, it’s well known that under the GDPR …

Read moreGDPR administrative fines and level playing field across Europe

Lack of trust and understanding in UK business use of personal data

trust in data

Research commissioned by the Information Commissioner’s Office indicates that only a fifth of UK citizens trust organisations and businesses with their personal data. In fact, there is less trust in businesses than public bodies in this regard. The research also indicates that only 10% of UK citizens have a good understanding of how their data is …

Read moreLack of trust and understanding in UK business use of personal data

MailChimp removes and puts back double opt-in for EU users

data to the world

If you’re a MailChimp user you may have received a couple of emails from them recently about their position on double opt-in defaults. Up until October 31st (2017) MailChimp used a double opt-in feature which meant when someone signs up to your email list they receive an email asking them to confirm the subscription – …

Read moreMailChimp removes and puts back double opt-in for EU users

WordPress 4.8.3 security release

wordpress

WordPress, the popular web platform, have today released a security update to some of its files to prevent an SQL injection vulnerability. According to the WordPress release post all prior versions of WordPress “are affected by an issue [which] can create unexpected and unsafe queries leading to potential SQL injection (SQLi).” The WordPress core doesn’t appear to …

Read moreWordPress 4.8.3 security release

Hubdate: GDPR definitions and principles

Hub Changelog

Hub Changelog v1.0.5 – 21st October 2017 We’re continuing to work on our detailed overview of the GDPR, within the data protection section, where we break the GDPR down into it’s main sections. This week we’ve published some information about: Key definitions Principles of data protection Full changelog archives

Hubdate: Plans for more detailed GDPR info & GDPR scope

Hub Changelog

Hub Changelog v1.0.4 – 15th October 2017 We’re currently developing a detailed overview of the GDPR, within the data protection section, where we break the GDPR down into its sections as well as pull together already established information areas on the Hub (that relate to the GDPR) – each area will be added to the …

Read moreHubdate: Plans for more detailed GDPR info & GDPR scope

ICO clarifies what’s going to happen with registration

registration fee

One of the regulatory requirements missing from the General Data Protection Regulation (GDPR) is the requirement to register your data processing activities with a supervisory authority (the ICO in the UK). Under the current regime of the Data Protection Act 1998 there is both a requirement to register and pay a fee to the ICO. The …

Read moreICO clarifies what’s going to happen with registration