Although the GDPR (General Data Protection Regulation) has its basis in EU law, organisations across the globe might be subject to its requirements. Whether non-EU companies are subject to the GDPR depends on a variety of factors, which we discuss …
The Welsh government has broken data protection laws more than 300 times since 2019, according to a FOI (Freedom of Information) request. Of those incidents, 11 were referred to the Information Commissioner’s Office, and three resulted in the affected data …
The UK government recently unveiled plans to expand the list of countries that it deems provide adequate data protection. It comes as part of a wider announcement on the future of the UK’s data protection regime, and follows the EU’s adequacy decision on the UK earlier this year. Adequacy decisions mean that the …
We live in a world of “datafied” children – whether we’re posting their photos on our social media pages, storing baby monitoring data in the Cloud or letting our kids use online services. Indeed, the likes of Facebook, Snapchat and …
Data sharing agreements between organisations with whom you send and receive information plays a major role in your compliance with the GDPR (General Data Protection Regulation) and similar regulations. Your organisation might refer to it by a different name – …
The EU Commission has awarded the UK two adequacy decisions. The first recognises that the UK meets the requirements of the GDPR (General Data Protection Regulation), and the other recognises that it meets the requirements of the Law Enforcement Directive. …
The GDPR (General Data Protection Regulation) is characterised by its widespread departure from previous European data protection laws – and one area where this is particularly the case is the scope of its application. Not only does the GDPR apply …
The Information Commissioner’s Office held its 2021 Data Practitioner’s Conference earlier this month, bringing together more than 3,000 data protection professionals from across the country. In a year filled with obstacles – from COVID-19 to Brexit – there was no …
On New Year’s Eve 2020, the UK and EU struck a deal allowing personal data to continue flowing freely between the territories until 30 June 2021. The agreement bridges the gap between the end of the Brexit transition period and …
In 2016, Marriott International purchased Starwood Hotels & Resorts to become the world’s largest hotel chain. But at no point during that $13.6 billion takeover did Marriott realise that it wasn’t only acquiring 11 new brands but also an unsecure …
