Data Protection Blog

26 June 2017

Data Protection – 10 further top tips for responding to subject access requests

Not long ago, we distilled a series of recent cases and produced practical guidance (see here and here) for employers on dealing with subject access requests under the Data Protection Act 1998 (“SARs”). These blogs were intended to complement our earlier blog “Top 10 tips for responding to a subject access request, which was prepared with the Information Commissioner’s (“ICO”) original code of practice in mind. That code of practice has now been re-issued in light of the recent guidance from the courts and can be found on the ICO’s website here. The code itself is lengthy and detailed, but in this blog, we have picked out another top 10 tips from the most useful and practical additions to the revised code.

Kirsty Churm

21 June 2017

The Queen’s Speech 2017 – Setting the parliamentary agenda

Shortly after 11.30am today the 64th Queen’s Speech of the reign of Her Majesty Queen Elizabeth II was delivered at the State Opening of Parliament. This important ceremonial event aimed to set the UK parliamentary agenda for the next two years.

Nick Wrightson

20 April 2017

Data Protection – even MORE practical guidance from recent case law on subject access requests

Last month we blogged on two recent cases which collated practical guidance from the courts on subject access requests (“SARs”) and foreshadowed another Court of Appeal decision on the same topic. 

James Murray

12 April 2017

Further chinks in the armour? EU-US Privacy Shield and the concerns of MEPs

In a resolution adopted on 6 April 2017, Members of the European Parliament (“MEPs”) expressed their “alarm” over several recent changes to the US privacy law regime. The resolution, passed by 306 votes to 240 with 40 abstentions, comes amidst growing concerns that President Trump and the US Congress are withdrawing from commitments made by the Obama administration in relation to US obligations under the EU-US Privacy Shield

Jonathan Blunden

3 April 2017

SaaS providers: are you ready for the new data protection regime?

In just over a year (25 May 2018), the EU General Data Protection Regulation (the “Regulation”) will replace the Data Protection Act 1998 (“the DPA”) and come into force in the UK. This will be just under a year before Brexit. In any event, the Regulation would still apply to all companies who intend to do business with the EU and handle the personal information of European citizens. 

Andrew Solomon

Skip to content Home About Us Insights Services Contact Accessibility