One of the great ironies of Brexit is that, irrespective of where we end up as a result of the present political hokey-cokey, the UK will move forward with a large piece of European thinking at the heart of its future trading policy. We all know and love this as the General Data Protection Regulation and the GDPR (plus a little bit around national security) is now enshrined within the UK’s 2018 Data Protection Act, passed with very little political ... Continue Reading →
Be careful out there…..
Much of our outsourced DPO work takes place in the health sector and we look after over 40 health related organisations.
Part of this work involves giving advice around third party Subject Access Requests. These come about, commonly, where there is a legal or insurance issue and the individual gives his/her permission for a solicitor or insurance company to contact the hospital or medical practice on their behalf to receive the relevant details from their health record.
However, ... Continue Reading →
Against a background of further high-profile fines and company reputation shredding, it may not be good news to learn that the GDPR may not be the last word in Data Protection regulation for organisations to contend with. The 2018 Data Protection Act is imminent and in the wake of the Cambridge Analytica scandal, the European Data Protection Board ( the replacement for the Article 39 Group) is limbering up and consulting on further regulation concerning the electronic processing of data.
As ... Continue Reading →
Schadenfreude as you probably know is a German short-hand term that means the pleasure derived by someone from another person’s misfortune.
Some of us may have been tempted to a wry smile watching Mark Zuckerberg over several weeks trying to explain and make some amends, for the many ways in which Facebook have sold our data to third parties.
Others of us may have more serious concerns as a result over the way companies like Cambridge Analytica and Aggregate IQ apparently amass ... Continue Reading →