Tag Archives: data protection

Changes to Binding Corporate Rules applications to the ICO

By James Dipple-Johnstone, ICO Deputy Commissioner – Operations. The Information Commissioner’s Office is widely recognised as a leader in Binding Corporate Rules (BCR) authorisations.  Around 25 per cent of the BCRs approved across Europe so far have been authorised by … Continue reading

Posted in James Dipple-Johnstone | Tagged , , | Leave a comment

Personal data must be safe from prying eyes

By Mike Shaw, Enforcement Group Manager. Just because you can, doesn’t mean you should. Most people are familiar with this phrase, but what is its relevance in the world of data protection? Put simply, just because your job may give … Continue reading

Posted in Mike Shaw | Tagged , , | Leave a comment

European guidance published – profiling and breach reporting

By Jo Pedder, Head of Policy and Engagement. The Article 29 Working Party – the group of EU data protection authorities charged with agreeing European-wide guidance on GDPR – has published guidelines on profiling and breach reporting. Guidelines on administrative … Continue reading

Posted in Jo Pedder | Tagged , , , | 1 Comment

GDPR – setting the record straight on data breach reporting

By Elizabeth Denham, Information Commissioner. Our series of blogs continues to sort the fact from the fiction by busting some of the myths around the General Data Protection Regulation (GDPR). New requirements to report serious breaches of personal data are … Continue reading

Posted in Elizabeth Denham | Tagged , , , , , | 28 Comments

GDPR is an evolution in data protection, not a burdensome revolution

By Steve Wood, Deputy Commissioner (Policy). Our new series of blogs aiming to bust some of the myths that have developed around the General Data Protection Regulation (GDPR) are proving incredibly popular and we are pleased that so many of … Continue reading

Posted in Steve Wood | Tagged , , , | 29 Comments

Consent is not the ‘silver bullet’ for GDPR compliance

By Elizabeth Denham, Information Commissioner. Last week I launched a series of blogs to bust some of the myths that have developed around the General Data Protection Regulation (GDPR). Before the new law comes into effect on 25 May 2018, … Continue reading

Posted in Elizabeth Denham | Tagged , , , , , | 101 Comments

GDPR – sorting the fact from the fiction

By Elizabeth Denham, Information Commissioner. The General Data Protection Regulation comes into force on 25 May 2018. That’s not new news. But it is a fact. It’s also fact that not everything you read or hear about the GDPR is … Continue reading

Posted in Elizabeth Denham | Tagged , , , | 95 Comments

When is a breach not a breach?

By Steve Eckersley, Head of Enforcement. The ICO has ruled that Virgin Trains East Coast did not break data protection law when it published CCTV footage of Jeremy Corbyn looking for a seat on a service from London. But the … Continue reading

Posted in Steve Eckersley | Tagged , | 3 Comments

The Information Commissioner opens a formal investigation into the use of data analytics for political purposes

By Elizabeth Denham, Information Commissioner. In March we announced we were conducting an assessment of the data protection risks arising from the use of data analytics, including for political purposes. Engagement with the electorate is vital to the democratic process. … Continue reading

Posted in Elizabeth Denham | Tagged , , , | 1 Comment

Draft GDPR Consent guidance receives a significant response

By Jo Pedder, Interim Head of Policy and Engagement. The issue of consent surrounding the use of data has proved to be increasingly high-profile recently – and that has been reflected in the large number of responses to our draft … Continue reading

Posted in Jo Pedder | Tagged , , , | Leave a comment