It is well known that, under the UK GDPR and Data Protection Act 2018 (“DPA 2018”), data subjects can enforce their data protection rights against data controllers directly in the courts and seek compensation for breaches of those rights.
Continue Reading Orders to Progress Complaints – No Backdoor Appeal Process For ICO Decisions
In a CLE webinar earlier this week, Malcolm Dowden (Partner, London) and Niloufar Massachi (Associate, Los Angeles) discussed evaluating, drafting, and updating vendor agreements to meet the privacy and security requirements of new US privacy laws and the GDPR.
Continue Reading Malcolm Dowden and Niloufar Massachi Discuss Vendor Contracting Requirements Under New US Privacy Laws and the GDPR
The Information Commissioner’s Office (“ICO”) has, for only the second time in its history, successfully prosecuted individuals under the Computer Misuse Act 1990 (the “Act”) in order to impose harsher criminal penalties for unauthorised access to personal data, (including prison sentences and confiscation orders), than are available under the Data Protection Act 2018 (the “DPA 2018”).
Continue Reading ICO Utilises the Computer Misuse Act to Impose Tougher Penalties for Unauthorised Access to Data