Blog
Press Round-Up: Regulatory and Professional Discipline – May 2026
Jack Garden
26 October 2016
Coming clean on data security breaches
There is currently no legal obligation under the Data Protection Act 1998 for data controllers to report to the Information Commissioner’s Office (“ICO”) any breaches of data security that have led to losses of personal data – although the ICO strongly encourages controllers to bring “serious breaches” to their attention.
18 October 2016
Public law challenges and the Great Repeal Bill
The Prime Minister, Theresa May MP, and the Secretary of State for Exiting the European Union, David Davis MP, have both recently announced that the next Queen’s Speech will include a “Great Repeal Bill” (the “Bill”). The primary purpose of the Bill will be to provide for the repeal of the European Communities Act 1972, the Act through which European Union (“EU”) law is given supremacy in the UK. The Bill is therefore meant to give effect to the outcome of the June 2016 referendum result. As explained by Mr Davis to the Commons on 10 October 2016, the Bill will “end the authority of [EU] law” and “return sovereignty to the institutions of this United Kingdom”.
14 September 2016
EU-US Privacy Shield
Further to our blog post in June 2016, the EU-US Privacy Shield has now been operational for over a month. In this article, we consider the practicalities of using the scheme and comment on its future.
25 July 2016
UK: ICO guidance confirms "GDPR firmly on Brexit agenda"
The UK Information Commissioner's Office ('ICO') published, on 7 July 2016, an overview guidance of the General Data Protection Regulation ('GDPR') ('the Guidance'). The Guidance highlights similarities and differences between the GDPR and the current Data Protection Act 1998 ('the Act'), focusing on a number of topics including the legal basis for the processing, individuals' rights, data protection impact assessments and data breach notification.
3 June 2016
Further update: EU-US Privacy Shield
Further to our last blog of 26 April 2016, we have three updates on the EU-US Privacy Shield.
Firstly, MEPs have passed a non-legislative resolution calling on the European Commission (the Commission) to remedy “deficiencies” in its proposals for the EU-US Privacy Shield.