£120k fines highlight need for the right consents and clear privacy statements

ico fines for pecr breaches

In three separate but connected cases the ICO has fined Leave.EU £60k and Eldon Insurance £60k for Privacy and Electronic Communications Regulations (PECR) offences relating to unsolicited emails. The cases had come to light during the ICO’s investigation in the use of personal data and analytics by political campaigns, whereby it was observed a clear …

Read more£120k fines highlight need for the right consents and clear privacy statements

Personal director liability under PECR introduced

On 17th December 2o18 a new PECR amendment regulation (Privacy and Electronic Communications (Amendment) Regulations 2018) came into force. The updated regulation extends the powers of the Information Commissioner’s Office (ICO) to enable them to fine “officers” of data controllers for breaches of the Regulation relating to electronic marketing including unsolicited marketing, automated calling, etc. …

Read morePersonal director liability under PECR introduced

ICO issues £200k fine for unsolicited text messages without valid consent

The Information Commissioner’s Office (ICO) has issued a £200,000 fine to Tax Return Limited (“TRL”) for sending out 14.8m unsolicited marketing text messages (which generated 2146 complaints). The Privacy and Electronic Communications Regulation 2003 (PECR) only permit the sending of marketing emails or text messages if the recipient consents to receiving the messages or is a …

Read moreICO issues £200k fine for unsolicited text messages without valid consent

ICO issues fine for email marketing breach

latest compliance news posts

The ICO has issued a fine to Morrison Supermarkets for sending marketing consent emails to over 130k email addresses where the subjects had previously opted-out of marketing. Remember that even under the current data protection and privacy regimes you must have consent to send marketing materials. There will be no change to this with the GDPR, …

Read moreICO issues fine for email marketing breach

When B2B data is personal data and what that means with the GDPR

business data processing

Data protection in the UK is changing thanks to the European General Data Protection Regulation (the GDPR). Just like the Data Protection Act 1998 the GDPR deals with personal data, data relating to a living individual rather than a corporate entity. The mere mention of “personal data” is usually enough for B2B’ers to think it …

Read moreWhen B2B data is personal data and what that means with the GDPR