Data Sharing and the ICO Code of Practice
Whenever an organisation (this could be a business, charity, school etc.) shares personal data externally it is deemed to be ‘processing’ it. This means (let’s stick to ordinary personal data for the purpose of this blog] that there has to be a legal ground to do...
The link between Information Security and Data Protection
As of 1 January, this year UK law that is concerned with the security of personal data (and what happens when things go wrong) is contained within the UK General Data Protection Regulation (‘UK GDPR’) and the Data Protection Act 2018. The law is concerned with...
Data Protection during Coronavirus
Some organisations may not know or be unclear as to how to deal with people’s personal data during the pandemic. This article aims to clarify matters. What the law says The first point to appreciate is that UK law only applies to personal data. That is any...
The Trade Deal, Data Protection, and the end of the Transition Period
I blogged previously on changes to data protection at the end of the transition period – 11 pm on 31 December 2020. I advised UK organisations who received personal data from Europe that any transfers of personal data to them from 1 January could only occur if the...
Why firms must not overlook GDPR after Brexit transition
While GDPR still currently applies in the UK, meaning businesses in Europe can freely send personal data to the UK, significant changes will come into effect on 1 January 2021. Read why at the Greater Birmingham Chambers of Commerce website.
Do I need a UK GDPR Representative?
When GDPR came into force in 2018, it caused a flurry of activity within companies all around the world, all trying to work out what they could and couldn't do with data they'd been collecting for years. It seemed it was website owners that were most concerned, and...