The Information Commissioner’s Office is warning people of the risk of holdings on the sensitive personal data when they change jobs or leave a company. It follows an investigation into the actions of two former Metropolitan Police officers who – having retained their notebooks – subsequently leaked information about a case in the media. Although […]

Former motor industry worker ordered to pay £25,500 from proceeds of data theft. If you thought the UK data regulator was only interested in big business, think again. A former employee of Nationwide Accident Repair Services (NARS) – an accident repair firm – has been ordered to pay £25,500 from the proceeds of data theft. […]

Cathay Pacific says the personal data of up to 9.4 million passengers have been accessed in the latest security breach to hit the aviation industry. Passport numbers, email addresses and expired credit card details were among the data leaked. Chief executive Rupert Hogg apologised and said there was “no evidence” the information had been misused. […]

Clashes between the need for secrecy in dealing with potential criminality and the obligations of transparency under data protection legislation are common. A recent UK decision (Lonsdale –vNational Westminister Bank Plc) highlights one such clash. In particular, it considered what happens when a DSAR (a Data Subject Access Request) is made seeking disclosure of SARs […]

The General Data Protection Regulation (GDPR) will officially come into force on 25 May 2018. GDPR’s reach is global. Any company that offers goods or services to anyone in the EU will be required to comply. If you haven’t started to comply, or are not sure what to do next, following these steps will help ensure you […]

The UK will be considered a “third country” as soon as it leaves the European Union (EU), which will potentially affect personal data exchanges with the UK, the EC’s consumer directorate has said in a Notice to Stakeholders. In view of the “considerable uncertainties”, particularly concerning the content of a possible withdrawal agreement, the notice said […]

Your name, your email address, your home address, your bank details, your credit or debit card details. You probably cannot count the number of times that you have been asked to share these important pieces of personal data with a company or organisation in the past weeks or months. As more and more of us […]

Businesses in the UK — whether B2B or B2C — are racing against the clock to get ready for the General Data Protection Regulation (GDPR), coming into force on May 25, 2018. Even though the UK has opted to leave the EU after GDPR was agreed upon, the rules still apply. In fact, it will […]