Sitemap
Blog
- 13 April – A big day for the future of Meta and its EU-US transfers
- A new threat to public safety? The collision of immigration and data protection law
- Breaking news: Meta receives largest GDPR fine to date
- Capita cyber-attack impacts around 90 organisations
- ChatGPT banned in Italy over alleged privacy violations
- Could you be in breach of the GDPR when printing work-related documents at home?
- Data breach claim transferred from High Court to County Court
- Data Reform Bill announced in Queen’s Speech
- EU-US draft adequacy decision now published
- Facebook prepares to defend yet more legal challenges as data woes continue
- Facebook shuts down facial recognition system after personal data concerns
- Facial recognition goes to war: How AI is being used in Ukraine
- FTC clamps down on Microsoft over child privacy infringements
- GDPR Turns 5!
- Guidance issued by the EDPB on international transfers of personal data
- ICO looking into schools' use of facial recognition to take lunch payments
- ICO Publishes First Tech Horizons Report
- India pushes ahead with new Digital Personal Data Protection Act
- LGBT dating app Grindr fined £8.6 million by Norway’s Data Protection Authority
- Meta verification subscription service signals end to data for free services
- Meta vs DPC over data-scraping breach
- Ministry of Defence email blunder exposes personal data of Afghan interpreters
- My name is Olivia: How old am I?
- Project Red Card: privacy concerns for the Premier League
- Remediating SCCs deadlines: are you ready?
- Spotlight on TikTok – ICO fines TikTok £12.7 million as global concerns relating to the app's security and data privacy practices continue to mount
- Stabilising transatlantic data flows: Examining the role of the new EU-US Data Privacy Framework
- Summary judgment confirms de minimis threshold continues to apply for data breaches
- The Conservative Party illegally collected data on ethnicity of 10 million voters but dodges enforcement action
- The European Commission has concluded its first review of Japan-EU mutual adequacy decision
- The fourth anniversary of the GDPR: what's happened and what's next
- The French police have been condemned by the French Data Protection Authority for their use of drones to monitor quarantine compliance
- The PRC announces the creation of a new data regulator
- Uber accused of using discriminatory facial verification software
- UK and US announce an agreement in principle for a "data-bridge"
- UK's regulatory approach to AI continues to shift
- Vulnerabilities in the Covid-19 vaccination booking website put the UK population's personal data at risk
- “Have you had your jab?”: Navigating the vaccine status of your workforce
Expertise
Insight
- Appropriate technical and organisational measures: key takeaways from the recent ICO BA, Marriott and Ticketmaster penalty notices
- AI regulation – latest legal developments in Europe and the US
- Amendments to Personal Data Protection Act
- An analysis of the Monetary Penalty Notice issued by the Information Commissioner's Office to British Airways plc dated 16 October 2020
- An analysis of the Monetary Penalty Notice issued by the Information Commissioner’s Office to Marriott International, Inc. dated 30 October 2020
- An analysis of the Monetary Penalty Notice issued by the Information Commissioner’s Office to Ticketmaster UK Limited dated 13 November 2020
- Are you ready for the GDPR?
- Article 29 Data Protection Working Party ("WP29") GDPR Guidelines on Consent
- Article 29 Data Protection Working Party ("WP29") GDPR Guidelines on Transparency
- Article 29 Data Protection Working Party GDPR Guidelines on Breach Notification
- Brexit snapshot - Brexit and data protection issues
- Brexit trade deal: what does it mean for data protection law?
- Class wars: time to legislate for hurt feelings? (Damages for data breach - Austrian Post)
- Closing the door on the third appeal against the ICO’s first UK GDPR fine
- Court of Appeal hands down significant judgment in Lloyd v Google LLC [2019] EWCA Civ 1599
- Court of Appeal hands down significant judgment in WM Morrison Supermarkets Plc ("Morrisons") v Various Claimants [2018] EWCA Civ 2339
- Cybersecurity risks: Fail to prepare; prepare to fail
- Data protection and 5MLD
- Data protection and coronavirus: what you need to know
- Data protection in Singapore: Year in review
- Data protection in the United Kingdom: the GDPR countdown
- Data Protection update - April 2018
- Data Protection update - April 2019
- Data Protection update - April 2020
- Data Protection update - April 2021
- Data Protection update - April 2022
- Data Protection update - April 2023
- Data Protection update - August 2018
- Data Protection update - August 2019
- Data Protection update - August 2020
- Data Protection update - August 2021
- Data Protection update - August 2022
- Data Protection update - August 2023
- Data Protection update - December 2019/January 2020
- Data Protection update - December 2021/January 2022
- Data Protection update - February 2018
- Data Protection update - February 2019
- Data Protection update - February 2020
- Data Protection update - February 2021
- Data Protection update - February 2022
- Data Protection update - January 2018
- Data Protection update - January 2019
- Data Protection update - January 2021
- Data Protection update - July 2018
- Data Protection update - July 2019
- Data Protection update - July 2020
- Data Protection update - July 2021
- Data Protection update - July 2022
- Data Protection update - July 2023
- Data Protection update - June 2018
- Data Protection update - June 2019
- Data Protection update - June 2020
- Data Protection update - June 2021
- Data Protection update - June 2022
- Data Protection update - June 2023
- Data Protection update - March 2018
- Data Protection update - March 2019
- Data Protection update - March 2021
- Data Protection update - March 2022
- Data Protection update - March 2023
- Data Protection update - May 2018
- Data Protection update - May 2019
- Data Protection update - May 2020
- Data Protection update - May 2021
- Data Protection update - May 2022
- Data Protection update - May 2023
- Data Protection update - November 2018
- Data Protection update - November 2019
- Data Protection update - November 2020
- Data Protection update - November 2021
- Data Protection update - October 2018
- Data Protection update - October 2019
- Data Protection update - October 2020
- Data Protection update - October 2021
- Data Protection update - September 2018
- Data Protection update - September 2019
- Data Protection update - September 2020
- Data Protection update - September 2021
- Data Protection update – December 2022-January 2023
- Data Protection update – February 2023
- Data Protection update – November 2022
- Data Protection update – October 2022
- Data Protection update – September 2022
- Data's coming home: the proposed future for international transfers under the UK GDPR
- DCMS AI Policy Statement
- EACCNY - EU-UK Data Protection Law Divergence: Impact on Data flows
- EDPB FAQs: what are your next steps for data transfers post-Privacy Shield?
- Expert Q&A: DIFC Data Protection Law
- Financial sector feels pressure to monitor use of WhatsApp
- Four key decisions mark the end of the EU GDPR's fourth year
- GDPR, PDPO and PIPL – A comparison
- Generative AI webinar series: top tips and take-aways
- Hong Kong's new anti-doxxing regime
- ICO publishes detailed guidance on subject access requests
- International employee DSARS - Practical tips for UK employers
- International personal data transfers: EDPB guidance and new Standard Contractual Clauses
- Lloyd v Google: No damages without proof of damage
- Make the invisible visible: five key takeaways from the Experian enforcement action
- Map, Update, Remediate
- New DIFC Data Protection Law: Act now to ensure compliance
- New guidance sheds light on an employer's approach to DSARs
- New UK data transfer tools
- PRC law alert – New legislation on export of personal information 中国法律更新 - 关于个人信息出境的新立法
- PRC released guidelines for SCC filing
- Presumption of innocence: privacy until proven guilty?
- Privacy Shield invalid: what next for international data transfers?
- RGPD – Compte à rebours
- Risks of remote working: How much can you monitor your employees?
- See EU later - using the UK’s post-Brexit data transfer tools
- Take two: What's new in the latest UK Data Protection and Digital Information Bill?
- The second reading of the Data Protection and Digital Information (No. 2) Bill
- Towards PIPL compliance – summary of actions
- United Kingdom General Data Protection Regulation
Knowhow
Team
- Katie Hewson
- Emily Aryeetey
- Simon Bollans
- Michael Bywell
- Peter Dalton
- Jenna Franklin
- Naomi Leach
- Katherine Liu
- Kiersten Lucas
- Genevieve Quierin
- Sheetal Sandhu
- Chloe Haywood
- Alison Llewellyn
- Zoe Zhou
- Kate Ackland
- Bobbie Bickerton
- Olivia Fraser
- Martha Hampton
- Jonathan Howie
- Daniel Jones
- Nic McMaster
- Joseph Samuelson
- James Wong
- Daya Matharu