Your Front Page For Information Governance News
Analysis and Commentary about Global Data Protection Laws, Including GDPR, FOI, Cyber Security and Surveillance
On Monday, the Government published a Statement of Intent about the forthcoming Data Protection Bill. The idea behind the Bill is to fill in some of the gaps in the General Data Protection Regulation (GDPR), which will come into force on 25th May 2018. The full text of the Bill is likely to be published … Continue reading “GDPR and the Data Protection Bill: Myths and Misunderstandings”
The General Data Protection Regulation (GDPR) will come into force in about 10 months. There is plenty to learn and do before then including: Raising awareness about GDPR at all levels Reviewing how you address records management and information risk in your organisation. Reviewing compliance with the existing law as well as the six new … Continue reading “Data Protection Impact Assessments under GDPR”
Some council chiefs, as well as some councillors, do not like the Freedom of Information Act 2000(FOI) claiming, amongst other things, that it costs too much and is used to request trivial information. Against this backdrop, how do council FOI officers deal with requests (often from journalists) for the names of councillors who are in … Continue reading “Councillors, council tax arrears and FOI”
I went on a Speed Awareness Course recently. I was not alone as 1,207,570 people did in 2015 and the numbers for 2016 will certainly be higher. There was a wonderful cross section of the population there and two trainers there as well. It was a good course with plenty of information about reading … Continue reading “Have you stopped speeding your car? Insurance companies and data protection.”
For the last six months, Data Protection experts, novices and agnostics have talked of little else but the General Data Protection Regulation, the new version of Data Protection law that will hold sway consistently across the 28 members of the European Union from the 25th May 2018. Well, about that. 28 now becomes 27, as … Continue reading “DP and #GDPR after #Brexit”
Now and again as a trainer you know that someone is ticking a box. This happened to an Act Now trainer recently. A meeting is held in a school somewhere in the heart of England and someone chirps up “Let’s get some Data Protection Training in school. Er.. Madge can you sort something out? Super.” … Continue reading “The school that ticked the box”
Having recently attended the Information Commissioner’s Office Data Protection Practitioners Conference in Manchester, I should start this blog post by echoing the words of our outgoing Commissioner, Christopher Graham, that the Regulation text is not the final version until later this year when it has been reviewed and fully translated for all 28 member states. … Continue reading “GDPR: The Data Protection Principles (but not as you know them Jim!)”
Charity envelope time again. And yet again another organisation I had no relationship with at all. This time it was a big one with offices in…are you ready… UK, USA, India, China, Philippines, Latin America, Mexico, Brazil, Africa, Indonesia, Vietnam, Middle East & North Africa and Bangladesh. Surprisingly in all these locations they couldn’t find a data protection expert to run his eye over their Privacy … Continue reading “SMILE! You’re on our Mailing List!”
No, this isn’t a new multi-million pound blockbuster, but instead a £200,000 error the Crown Prosecution Service probably wishes it had never made. On the 4th November 2015 the Information Commissioners Office (ICO) issued a £200,000 monetary penalty notice under the Data Protection … Continue reading “‘The Great CPS Data-breach!’”
By Scott Sammons I recently took part in an ‘Information Awareness’ week for a local council. This was an event for council staff involving various training sessions revolving around a certain theme. Last year the sessions were on the theme of game shows and this year the theme was films. I was lucky enough to … Continue reading “Permission Impossible? Consent and the new EU Data Protection Regulation”