ICO urges better transparency as trust in companies processing data rises slightly

ico report trust confidence data protection

In its annual review on the state of data protection awareness and trust, the ICO’s Annual Track highlights a small increase in trust of companies and organisations processing their data. The research highlights that 34% of people have high trust and confidence, compared to 21% in 2017. However, people seem to be more likely to trust public …

Read moreICO urges better transparency as trust in companies processing data rises slightly

ICO 2017-18 Annual Report: Data protection complaints and breach reports up

ICO annual report increase

  The Information Commissioner’s Office has published their 2017-2018 Annual Report (covering the 12 months leading up to 31st March 2018) highlighting an increase in activities and some challenging activities. The report is the ICO’s annual report to parliament as required by the Data Protection Act 1998. Bearing in mind that it covers the year …

Read moreICO 2017-18 Annual Report: Data protection complaints and breach reports up

EU and Japan agree data protection adequacy

Japan EU Adequacy

  This week the EU and Japan have agreed to recognise each others data protection regulations as “adequate” meaning that once the formalities are completed (later this year), Japan will be added to the list of non-EU countries who have adequate data protection regimes. The GDPR and the Data Protection Directive before it, puts in …

Read moreEU and Japan agree data protection adequacy

DCMS consults on data protection fee exemptions

consultation

The Department for Culture, Media and Sport (DCMS) has published a consultation on exemptions under the Data Protection Act 2018 from paying a registration fee to the ICO. Under the old Data Protection Act 1998 there were obligations to notify the ICO if you process data, unless an exemption applied. Under the GDPR, which the …

Read moreDCMS consults on data protection fee exemptions

Is this the end of US Privacy Shield?

EU-US Privacy Shield

Last week the European Parliament Committee on Civil Liberties, Justice and Home Affairs (LIBE) called on the EU Commission to suspend the EU-US Privacy Shield agreement, saying Privacy Shield doesn’t provide enough protection for EU citizens’ data. What’s Privacy Shield? Privacy Shield was adopted in 2016, replacing the previous agreement (Safe Harbor) which had been determined …

Read moreIs this the end of US Privacy Shield?

And so, a new era in data protection begins

GDPR is here

It’s a date that’s been in everyone’s minds for some time whether it’s because you’re a business targeting it as the deadline to complete your GDPR compliance project, or a consumer being bombarded by “we need to re-seek your consent” emails. The 25th May is here – the day the EU’s General Data Protection Regulation …

Read moreAnd so, a new era in data protection begins

Data Protection Bill to receive Royal Assent 23rd May

Regulation

According to the Parliament website both the House of Commons and House of Lords have agreed on the text of the Data Protection Bill which now awaits Royal Assent, which is scheduled for tomorrow (23rd May 2018). The Bill will become the Data Protection Act 2018. It’s main aims are to: implement the GDPR into …

Read moreData Protection Bill to receive Royal Assent 23rd May

ICO publish consent guidance and update cookie consent rules

consent and cookies

We’ve been waiting for some time, for the Information Commissioner’s Office (ICO) to publish it’s final consent guidance. It’s been in draft since March last year and waiting on the Article 29 Working Party’s own guidance. Last week however, they published their final guidance. You can read it here: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/consent/. There’s not many differences from the …

Read moreICO publish consent guidance and update cookie consent rules

EU’s Article 29 Working Party publishes consent guidance

EU GDPR

EU guidance on the consent rules in GDPR have now been published by the Article 29 Working Party. The guidance covers how consent works from a GDPR perspective including how to interpret “freely given”, “specific”, “informed” and “detriment”. It also adds some clarity about how to collect explicit consent is required. There’s not much in …

Read moreEU’s Article 29 Working Party publishes consent guidance