Data Protection Blog

9 January 2019

GDPR for the UK: Brexit and international transfers of personal data

With the UK due to leave the EU on 29 March 2019, UK Parliament is working towards creating new regulations to ensure that the UK’s data protection standards will be equivalent to EU law post-Brexit. The UK would use this as the basis for securing an adequacy decision from the European Commission meaning that our legal framework is deemed to provide adequate protection for individuals’ rights and freedoms over their personal data. As discussed in our previous blog, this would facilitate cross-border transfers of personal data and business continuity as the UK aims to trade with the single market on equal terms.

Alexander Torpey

3 January 2019

Care homes take heed: if you have failed to pay the ICO data protection fee you could be breaking the law

The Information Commissioner’s Office (ICO) has commenced formal enforcement action against care homes that have failed to pay the data protection fee.

Kathryn Sheridan

27 November 2018

GDPR and Brexit: the draft withdrawal agreement and data transfers from the EU

International transfers of personal data are instantaneous and constant. Everyday business functions such as uploading data files to the cloud or sending emails potentially involve transferring personal data across international borders. This is particularly relevant in today’s global economy where business functions are often outsourced overseas for operational and cost efficiencies.

Andrew Solomon

2 November 2018

Disclosure of Suspicious Activity Reports may not amount to Tipping-off, says High Court

The High Court has held that suspicious activity reports may amount to “personal data” for the purposes of the Data Protection Act 1998 (“DPA 1998”) and are potentially disclosable following a subject access request.

6 August 2018

Data Protection Act 2018 and law enforcement: an introduction

Two months ago, the introduction of the General Data Protection Regulation (“GDPR”) and the Data Protection Act 2018 (“DPA”) significantly changed our data protection landscape (see our related blogs). Reference to “GDPR” became a daily occurrence in shops and offices, and received daily attention on social media and in the press.

Ed Smyth

Skip to content Home About Us Insights Services Contact Accessibility