Data Protection Blog

3 November 2015

A bitter pill: Hard lessons learnt by online pharmacy fined for selling customer data

The Information Commissioner has issued a monetary penalty notice (MPN) of £130,000 to Pharmacy2U, the UK's largest NHS approved online pharmacy, after it sold the details of 21,500 customers to third-parties through an online marketing company.  The Commissioner’s enforcement activity to date has focussed predominantly upon data security breaches. This is the first MPN for a breach of the first data protection principle under the Data Protection Act 1998 (DPA) which concerns the fair and lawful processing of data. It provides both a reminder of the importance of the first principle and a lesson to all organisations about clear customer communication and consent. 

Emily Carter

23 October 2015

Landlords’ Right to Rent check obligations – mind the data protection, equality and criminal sanctions traps

The Home Office announced on 20 October 2015 that from 1 February 2016 all private landlords in England will have to check that new tenants have the right to be in the UK before renting out their property. The new scheme will not apply in Scotland, Wales or Northern Ireland for the time being. 

27 January 2015

Top tips on data protection for growing businesses

Any organisation that handles and captures customer or employee data, whether it be on a server, in a cloud or even on a usb stick, needs to follow the appropriate data protection laws in doing so or it can face heavy penalties.

Kirsty Churm

27 February 2014

Data Protection Revisited – Hacking, Leaking and Cloud Concerns in 2014

Hardly a day goes by without a new story about another cyber-attack, leaked or hacked passwords or log-ins.

Skip to content Home About Us Insights Services Contact Accessibility