Not long ago, we distilled a series of recent cases and produced practical guidance (see here and here) for employers on dealing with subject access requests under the Data Protection Act 1998 (“SARs”). These blogs were intended to complement our earlier blog “Top 10 tips for responding to a subject access request”, which was prepared with the Information Commissioner’s (“ICO”) original code of practice in mind. That code of practice has now been re-issued in light of the recent guidance from the courts and can be found on the ICO’s website here. The code itself is lengthy and detailed, but in this blog, we have picked out another top 10 tips from the most useful and practical additions to the revised code.
Shortly after 11.30am today the 64th Queen’s Speech of the reign of Her Majesty Queen Elizabeth II was delivered at the State Opening of Parliament. This important ceremonial event aimed to set the UK parliamentary agenda for the next two years.
In a resolution adopted on 6 April 2017, Members of the European Parliament (“MEPs”) expressed their “alarm” over several recent changes to the US privacy law regime. The resolution, passed by 306 votes to 240 with 40 abstentions, comes amidst growing concerns that President Trump and the US Congress are withdrawing from commitments made by the Obama administration in relation to US obligations under the EU-US Privacy Shield.
In just over a year (25 May 2018), the EU General Data Protection Regulation (the “Regulation”) will replace the Data Protection Act 1998 (“the DPA”) and come into force in the UK. This will be just under a year before Brexit. In any event, the Regulation would still apply to all companies who intend to do business with the EU and handle the personal information of European citizens.