ICO intends to fine BA and Marriott (£183m and £99m)

ICO BA Marriott fines

This week the ICO has published statements on its intentions to fine British Airways £183m and Marriott Hotels £99m for breaches of GDPR. But before everyone gets excited about the size of the fines, remember these are just “intentions” to fine, not actual fines. So, so far BA and Marriott have not been fined. They …

Read moreICO intends to fine BA and Marriott (£183m and £99m)

Personal director liability under PECR introduced

On 17th December 2o18 a new PECR amendment regulation (Privacy and Electronic Communications (Amendment) Regulations 2018) came into force. The updated regulation extends the powers of the Information Commissioner’s Office (ICO) to enable them to fine “officers” of data controllers for breaches of the Regulation relating to electronic marketing including unsolicited marketing, automated calling, etc. …

Read morePersonal director liability under PECR introduced

ICO issues fines to organisations who failed to pay the new data protection fee

ICO fines for not paying fee

This week the ICO fined a number of organisations for failure to pay the new data protection fee. The new fee structure came into place on 25 May 2018 when the Data Protection (Charges and Information) Regulations 2018 came into force, changing the way the ICO funds its data protection work. The new Regulations require all …

Read moreICO issues fines to organisations who failed to pay the new data protection fee

GDPR administrative fines and level playing field across Europe

GDPR level playing field

The Article 29 Working Party (all the EU regulators) have published guidance to help statutory bodies (regulators such as the ICO) in their deliberations over what action to take when a breach of the GDPR data protection rules occurs by a Data Controller or Data Processor. Of course, it’s well known that under the GDPR …

Read moreGDPR administrative fines and level playing field across Europe