Clare Sellars

Contact:

Controversy around the UK’s Online Safety Bill continues

By Clare Sellars on May 15, 2023

The debate concerning the UK’s controversial Online Safety Bill (OSB) has continued to rumble on in recent days, with the UK Government reportedly again being warned that there is a real risk that certain messaging apps could be withdrawn from the UK if compromises cannot be reached on a number of issues.

The OSB, which is currently being debated in the House of Lords, aims to increase the responsibility of social media platforms for their users’ safety. It is intended to protect both children and adults in various ways. Continue Reading Controversy around the UK’s Online Safety Bill continues

Messaging Apps Call for Re-evaluation of the Online Safety Bill

By Clare Sellars on April 20, 2023

A number of encrypted messaging services have signed an open letter calling on the UK Government to reconsider various aspects of the Online Safety Bill (OSB) pending its final reading in the House of Lords, over concerns that the bill could threaten end-to-end encryption.

End-to-end encryption currently delivers a strong level of security for electronic messages, meaning that messages can only be read on the apps of the sender and intended recipient. Continue Reading Messaging Apps Call for Re-evaluation of the Online Safety Bill

UK Takes Action Over Cybercrime

By Clare Sellars on February 15, 2023

The United Kingdom and the United States joined forces last week in an initiative to combat ransomware attacks by sanctioning seven Russian nationals believed to be members of a hacking network. Together with U.S. authorities, the UK’s Foreign Office has reportedly identified the individuals in question, frozen their assets and imposed travel bans in respect of them.

Ransomware is a type of malware that typically renders systems or data inaccessible, often due to the encryption of files. Devices are often locked, and data may be leaked, in addition to being encrypted or deleted, unless and until the victim pays a “ransom” to the actors who deployed the ransomware in return for decryption. Continue Reading UK Takes Action Over Cybercrime

UK Information Commissioner’s Office Highlights New Strategic Approach to Regulatory Action

By Clare Sellars on December 16, 2022

The new approach to regulatory and enforcement action adopted by the UK Information Commissioner’s office (ICO) looks set to continue in 2023. The ICO has indicated recently that it is modifying its attitude towards regulatory action in respect of public sector organisations. It has also noted that enforcement does not necessarily equate to fines, but includes various other “corrective powers,” including warnings, reprimands, compliance orders, limitation orders, erasure of data and suspension of data flows.

Going forward, the ICO intends to regulate for outcomes rather than outputs, observing that the number or level of fines should not be used as a yardstick by which to judge the ICO’s success and that achieving preferential outcomes and publicising these may have a more significant impact on UK citizens’ rights than monetary penalties might achieve.

Continue Reading UK Information Commissioner’s Office Highlights New Strategic Approach to Regulatory Action

UK Information Commissioner Publishes New Data Sharing Code of Practice

By Clare Sellars on December 18, 2020

Article29 On 17 December 2020, the UK Information Commissioner’s Office (ICO) published its new Data Sharing Code of Practice, as required under the Data Protection Act 2018 (DPA18).

The new Code provides practical guidance for controllers that share personal data with other controllers on how to ensure that data sharing complies with applicable data protection requirements. The new Code is a statutory code and updates the ICO’s previous data sharing code, which was published in 2011. The ICO has also instigated a new data sharing information hub which provides further support for organizations involved in data sharing.
Continue Reading UK Information Commissioner Publishes New Data Sharing Code of Practice

Use of Facial Recognition Technology Increasing

By Clare Sellars on December 17, 2020

Despite concerns expressed by regulators and privacy activists, the use of facial recognition technology appears to be on the rise and is becoming increasingly common in everyday life as a result of various different issues.

One recent example of the use of such technology involves the Southern Cooperative, which has reportedly trialed certain facial recognition technology in a number of Co-op stores over the last few months. The technology, developed by Facewatch, notifies staff of the presence in stores of individuals with past records of “theft or anti-social behaviour” and apparently has been implemented to try to combat a recent significant increase in attacks on employees by shoplifters.
Continue Reading Use of Facial Recognition Technology Increasing

British Airways Fined £20 Million by ICO for Data Breach

By Rohan Massey, Clare Sellars & Edward Machin on October 20, 2020

GDPR On 16 October 2020, in a long-awaited decision, the UK Information Commissioner’s Office (ICO) finally announced that it has fined British Airways (BA) £20 million for failing to protect the personal and financial details of over 400,000 customers. The ICO originally announced in July 2019 its intention to fine BA £183 million in respect of a security breach, meaning that the final amount of the fine was over 90% lower than the original suggested amount. Notwithstanding this, the BA fine is still the largest fine that the ICO has ever issued.
Continue Reading British Airways Fined £20 Million by ICO for Data Breach

The UK Information Commissioner’s Regulatory Approach and Priorities During COVID-19

By Clare Sellars on May 21, 2020

FAQ On 5 May 2020, the Information Commissioner’s Office (ICO) published a blog setting out the Information Commissioner’s new priorities for UK data protection during COVID-19 and beyond. This follows on from the document published on 15 April 2020, in which the ICO promised an “empathetic” approach to its enforcement of data protection laws during the coronavirus outbreak, prioritizing areas likely to cause the greatest public harm and directing its services towards providing guidance for organizations about how to comply with the law during the crisis.
Continue Reading The UK Information Commissioner’s Regulatory Approach and Priorities During COVID-19

easyJet Suffers Data Breach Involving Nine Million Customers

By Clare Sellars on May 19, 2020

Digital Lock In news that will no doubt alarm many of the airline’s passengers, easyJet plc (easyJet) has confirmed that it has suffered a serious data breach affecting nine million customers as the result of a cyber-attack. In addition to certain personal data including email addresses and travel details, the credit card details of 2,208 customers have apparently been impacted and the UK Information Commissioner’s Office (ICO) has been informed.
Continue Reading easyJet Suffers Data Breach Involving Nine Million Customers

UK Information Commissioner Issues New Guidance for Employers on Workplace Testing for Coronavirus

By Clare Sellars on May 18, 2020

Article 29 Following the limited relaxation of lockdown restrictions by the UK Government and the likely return to the workplace of at least some employees, the UK Information Commissioner’s Office (ICO) has published some helpful guidance for employers on the data protection issues raised by workplace testing for coronavirus.

The guidance notes that, although data protection law does not stop employers taking measures that are required to protect their staff and the public during the coronavirus pandemic, personal data must be handled carefully.
Continue Reading UK Information Commissioner Issues New Guidance for Employers on Workplace Testing for Coronavirus

MENU

RopesDataPhiles