Insights & News
Search for Insights & News
09 October 2018
The Information Commissioner’s Office (“ICO”) has made a civil monetary penalty order for the sum of £120,000 against Heathrow Airport Ltd (“HAL”) after a lost data stick containing the sensitive personal information of a number of staff members was found by a member of the public.
19 June 2018
Many of our clients in the retail, fashion and hospitality sector face similar HR issues. Each month one of the members of our team will identify an issue, ask how you would deal with it and provide our advice. This month we asked Laura...
14 December 2017
A recent High Court judgment has illustrated how employers can potentially be held liable for wrongful disclosure of personal data by their employees.
05 October 2017
Many of you will remember Max Schrems, the Austrian law student who in 2015 successfully brought a case to the European Court of Justice (“ECJ”) that resulted in the “safe harbor” - the agreement that allowed the transfer of EU citizens’ data to the US - being declared invalid.
30 March 2017
A recent Court of Appeal decision has given clarity to data controllers in terms of the grounds on which they may refuse a data subject access request (“DSAR”), although the position is not always a helpful one.
“(Section 55) Shades of Gray” - using the Data Protection Act to prevent employees misusing or taking data27 February 2017
A recent case has highlighted a potentially helpful mechanism in the Data Protection Act 1998 (“DPA”) for employers to use if they are concerned about employees taking data when they leave.
The implications for data protection law in the UK and GDPR compliance plans in the eye of the Brexit Storm03 November 2016
On the 4th May 2016, a fundamental milestone in the history of EU Data protection law was reached with the adoption of the EU General Data Protection Regulation (“GDPR”) achieving harmonisation of the rules across the EU after four years of hard-fought negotiations.
07 June 2016
The UK’s data protection legislation is currently derived from the EU’s 1995 Data Protection Directive (95/46/EC). In May 2018, this will be replaced by the EU’s General Data Protection Regulation (GDPR) which will be directly applicable across the EU (together with a new Data Protection Directive for the police and criminal justice sector).
02 June 2016
A new ruling of the Employment Appeal Tribunal (EAT) raises important questions about when employees can have a reasonable expectation of privacy in respect of material on their personal devices.