Latest Posts
Search for:
Author

Lucy Hart

Browsing
In Data Privacy

How does the EU-US Data Privacy Framework benefit companies relying on the EU Standard Contractual Clauses for data transfers to the US?

by and 4 Mins Read

The European Commission’s adequacy decision for the EU-US Data Privacy Framework (the ‘Framework’) still has a significant beneficial impact for companies even if they continue to rely on the EU Standard Contractual Clauses (‘SCCs’) for transatlantic data transfers instead of participating in the Framework due to the findings in the decision regarding updated US laws and practices. The decision confirms that the EU Commission considers the designation of the EEA as a qualifying organisation under…

In Data Privacy

ICO issues update on change of approach to regulating communication service providers

by 2 Mins Read

The Information Commissioner’s Office (ICO) has published an update confirming its plans to cease enforcement of certain breaches of regulation 5A of the Privacy and Electronic Communications Regulations 2003 (PECR) against public electronic communications service providers (CSPs). Regulation 5A PECR requires CSPs to notify the ICO within 24 hours of becoming aware of a personal data breach. The ICO initially published a statement on 20 January 2023 which stated that it had decided to stop…

In Data Privacy

UK Data Privacy Compliance: Lessons from the ICO’s First Fine

by and 1 Min Read

Late last year the UK Information Commissioner’s Office issued its first formal monetary penalty notice under the GDPR. The ICO fined Doorstep Dispensaree £275,000 for, among other things, failing to keep sensitive data securely and providing an inadequate privacy notice to data subjects. This fine was based on a number of fundamental breaches by Doorstep Dispensaree: for example, most of its internal policies had not been updated since before the entry into force of the…

In Data Privacy

UK Government to Introduce New Law to Strengthen Security of Consumer IoT Devices

by and 3 Mins Read

The UK Government Department for Digital, Culture, Media & Sports (DCMS) has announced plans to introduce a new law aimed at ensuring that internet-connected products are secure by design, and protecting users from the threat of cyber-attacks. The proposed new law, announced by DCMS on 27 January 2020, will require that: all consumer internet-connected devices have unique passwords that are not resettable to any universal factory setting; manufacturers of consumer internet-connected devices provide a public point…