Mike Bradford, BIIA’s contributing editor on the subject of data protection and privacy has published his latest newsletter which he is sharing with our UK members.

Data Protection Bill: The UK Government has committed to updating data protection laws through a new Data Protection Bill which will fully incorporate the General data Protection Regulation (GDPR) and bring it into UK law, effective from 25th May 2018.

The UK Information Commissioner’s Office addresses GDPR myths: The Information Commissioner’s Office has issued a series of articles addressing what it considers to be myths about the General Data Protection Regulation (GDPR).

Consent and GDPR; Elizabeth Denham, the UK Information Commissioner, has issued some guidance about GDPR and consent in an attempt to quash the belief that consent is always required in order to process personal data.

Financial penalties and GDPR: The Information Commissioner has made clear that GDPR is focussed on protecting consumers rather than issuing big fines. The ICO’s approach will continue to be one of providing guidance to organizations.

Recent data breaches in the UK:

Nottinghamshire County Council : Nottinghamshire County Council has been fined £70,000 by the ICO after placing vulnerable individuals’ data at risk. The personal information was left online for five years and it was highlighted when a member of the public became concerned that the information could be a target for criminal activity. The information actually showed whether or not people were in hospital.

Home Logic UK Ltd: Home Logic UK Ltd has been fined £50,000 by the ICO for making marketing calls to people who had stated that they did not wish to be contacted in that way.

Islington Council: Islington Council has received a £70,000 fine for failing to keep information secure on its parking ticket system website.

To read the full report please click on this link: Newsletter – September 2017