Guest blog: the top 12 ways to protect your data with technology

12 ways to protect your data

  This article has been written by Aden Ottewill. Aden is the Managing Director of Prodigy IT Solutions, a Dorset-based managed service provider. With over 18 years working in the IT industry, he’s provided support to hundreds of businesses, and has seen some breath-taking security breaches. Although the Prodigy team now do the fixing, he’s passionate …

Read moreGuest blog: the top 12 ways to protect your data with technology

£160k fine for TPS and transparency failings

TPS fine

A boiler replacement company has been fined £160,000 by the ICO for calling over 850,000 people who had registered with the Telephone Preference Service (TPS) and for transparency failings. The Privacy and Electronic Communications Regulations 2003 (PECR) require businesses to have cleaned their phone number data against the TPS before using the data for live …

Read more£160k fine for TPS and transparency failings

Greek DPA -v- PwC highlights consent not suitable lawful basis for employee data

consent and employee data

The Greek equivalent of the ICO have issued a €150,000 fine of PwC for having the wrong lawful basis for processing for their employee’s data. PwC required employees to consent to the processing of their data when other lawful basis were more applicable; furthermore, PwC had also failed to properly document their lawful basis for …

Read moreGreek DPA -v- PwC highlights consent not suitable lawful basis for employee data

Patient confidentiality -v- data protection, highlight of ICO’s review of Royal Free/Google compliance

ICO to look at duty of confidentiality patient data

The ICO has published information on its review of the Royal Free NHS Foundation Trust and the Trust’s use of the Google DeepMind AI project to analyse patient data. This follows up the case from a couple of years back whereby the Trust were found to be in breach of data protection law as the …

Read morePatient confidentiality -v- data protection, highlight of ICO’s review of Royal Free/Google compliance

Cybersecurity, children’s privacy & marketing practices are main concerns according to ICO privacy tracker survey

Survey shows drop in trust

The ICO have published their Annual Tracker, a survey looking at public perceptions of privacy and data protection. The main aim of this research was: To gauge public perceptions and awareness of how data is shared with and used within organisations and to monitor any change in the trust and confidence in how data is …

Read moreCybersecurity, children’s privacy & marketing practices are main concerns according to ICO privacy tracker survey

EU Court declares website is data controller for Facebook “like” button

EU ruling on facebook like button on websites

The Advocate General has issued an opinion in Case C-40/17 relating to the use of a Facebook “like” button placed on the website of Fashion ID. The opinion sets out who is responsible for the sharing and processing of data. The Court of Justice of the European Union found that when a website features a Facebook “Like” …

Read moreEU Court declares website is data controller for Facebook “like” button

Learnings about data security from an £80k ICO fine for an estate agent

ICO fine estate agent 80k for security issues

The ICO have fined estate agent, Life at Parliament View Limited (LPV), £80,000 for security failings relating to tenant information. The breach occurred in 2015 (which is why this was dealt with under “old” data protection and not GDPR). It occurred when an insecure FTP (file transfer service) server was used to transfer just over …

Read moreLearnings about data security from an £80k ICO fine for an estate agent

ICO publishes annual report (18/19) highlighting “unprecedented” year

ICO Annual Report

The ICO has published its Annual Report for 2018/19 which it says highlights what they refer to as an unprecedented year, which includes (for the 12 month period up to 31st March 2019): Helping the public and organisations: The ICO helpline received over 471,000 contacts (a 66% increase from the previous period) Almost twice as many …

Read moreICO publishes annual report (18/19) highlighting “unprecedented” year

ICO warns about privacy implications of live facial recognition

facial recognition data protection

In a recent blog, the Information Commissioner highlights the ICO’s concerns with the use of live facial recognition technologies. The focus on the article relates to an ongoing case (R (Bridges) v Chief Constable of South Wales Police) which led to the ICO looking at how the police are trialing facial recognition technology and makes the …

Read moreICO warns about privacy implications of live facial recognition

First GDPR fine from Romanian data protection authority

Romanian Data Protection Authority fine

The Romanian National Supervisory Authority (the Romanian equivalent of the UK’s ICO) has issued its first GDPR fine. They have fined Unicredit Bank €130,000 for breaches of Article 25(1) for “failure to implement appropriate technical and organisational measures, both within the determination of the processing means and processing operations themselves, designed to effectively implement data …

Read moreFirst GDPR fine from Romanian data protection authority