Feb 14, 2023 Faces and breaches: ICO doubles down on tailored approach to UK data enforcement By Alex Buchanan In the first few weeks of 2023, the ICO has continued to espouse its commitment to exercising its full spectrum of enforcement powers....
Mar 24, 2022 Ransomware attacks: Are you ready? New ICO guidance can help By Ross O'Mahony The ICO’s new ransomware guidance could not have come at a more pertinent time. This week Joe Biden, told US business leaders it was...
Feb 10, 2022 Another one bites the dust: Further vicarious liability data breach claim fails By Alex Buchanan In a critical decision for organisations handling sensitive data, Luton Borough Council has been found not vicariously liable for the...
Jan 17, 2022 RAP (feat. statutory guidance): ICO releases draft enforcement strategy for consultation By Ross O'Mahony In December 2021, the ICO released its revised draft Regulatory Action Policy (RAP); revised draft Statutory Guidance on Regulatory...
Jul 19, 2021 British Airways negotiates the settlement of mass data claim By Anna Broadley In December, I attempted to forecast what 2021 might bring in relation to mass claims in the data sphere. The big unknown remains, as we...
Feb 12, 2021 Pay to play: Judge rules lawyers leading group action against British Airways cannot recover costs of advertising By Ross O'Mahony In group actions, publicity often pulls in more plaintiffs. TV advertising has long been used by claimant firms in the United States to...
Jan 21, 2021 When should you notify a data breach? New EDPB guidance provides practical examples By Ross O'Mahony New guidelines published on 14 January provide both practical examples of when to notify a data breach and “advisable measures” which...