GDPR Archive
The Welsh government has broken data protection laws more than 300 times since 2019, according to a FOI (Freedom of Information) request. Of those incidents, 11 were referred to the Information Commissioner’s Office, and three resulted in the affected data …
The GDPR (General Data Protection Regulation) is characterised by its widespread departure from previous European data protection laws – and one area where this is particularly the case is the scope of its application. Not only does the GDPR apply …
On New Year’s Eve 2020, the UK and EU struck a deal allowing personal data to continue flowing freely between the territories until 30 June 2021. The agreement bridges the gap between the end of the Brexit transition period and …
In 2016, Marriott International purchased Starwood Hotels & Resorts to become the world’s largest hotel chain. But at no point during that $13.6 billion takeover did Marriott realise that it wasn’t only acquiring 11 new brands but also an unsecure …
A German publishing company has become the first organisation to face enforcement action for its use of SCCs (standard contractual clauses) following the demise of the EU–US Privacy Shield. The BayLDA (Bavarian Data Protection Authority) ruled that the publisher failed …
Although the GDPR (General Data Protection Regulation) is rooted in EU law, organisations across the globe have been told that they must comply with its requirements. This has been most prominent in the US, which is the EU’s biggest trading …
Under the GDPR (General Data Protection Regulation), organisations must report certain types of data breach within 72 hours of becoming aware of them. As such, when an incident occurs, security teams must work quickly to investigate the breach, document their …
On Friday, 19 February 2021, the European Commission issued a press release regarding an adequacy decision for the UK. The Commission has “launched the process towards the adoption of an adequacy decision”, meaning it has reviewed the UK’s data laws …
The UK has finally left the EU, but the debates over the legal ramifications of Brexit remain as prominent as ever. In particular, the GDPR (General Data Protection Regulation) and the way in which organisations are permitted to transfer personal …
After more than four years of Brexit negotiations, the UK is now only a few days away from the end of its transition period out of the EU. Unfortunately, the negotiations – which can charitably be described as ‘disorganised’ – …
