Skip to main content

Insights & News

Search for Insights & News

  • Heathrow fined over data breach

    09 October 2018

    The Information Commissioner’s Office (“ICO”) has made a civil monetary penalty order for the sum of £120,000 against Heathrow Airport Ltd (“HAL”) after a lost data stick containing the sensitive personal information of a number of staff members was found by a member of the public.

  • Ask About...Retail, Fashion and Hospitality

    19 June 2018

    Many of our clients in the retail, fashion and hospitality sector face similar HR issues. Each month one of the members of our team will identify an issue, ask how you would deal with it and provide our advice. This month we asked Laura...

  • Rogue employees and no-fault liability

    14 December 2017

    A recent High Court judgment has illustrated how employers can potentially be held liable for wrongful disclosure of personal data by their employees.

  • International data transfers - are model clauses now under threat?

    05 October 2017

    Many of you will remember Max Schrems, the Austrian law student who in 2015 successfully brought a case to the European Court of Justice (“ECJ”) that resulted in the “safe harbor” - the agreement that allowed the transfer of EU citizens’ data to the US - being declared invalid.

  • Greater clarity on data subject access requests

    30 March 2017

    A recent Court of Appeal decision has given clarity to data controllers in terms of the grounds on which they may refuse a data subject access request (“DSAR”), although the position is not always a helpful one.

  • “(Section 55) Shades of Gray” - using the Data Protection Act to prevent employees misusing or taking data

    27 February 2017

    A recent case has highlighted a potentially helpful mechanism in the Data Protection Act 1998 (“DPA”) for employers to use if they are concerned about employees taking data when they leave.

  • The implications for data protection law in the UK and GDPR compliance plans in the eye of the Brexit Storm

    03 November 2016

    On the 4th May 2016, a fundamental milestone in the history of EU Data protection law was reached with the adoption of the EU General Data Protection Regulation (“GDPR”) achieving harmonisation of the rules across the EU after four years of hard-fought negotiations.

  • Brexit and data protection - would it make a difference

    07 June 2016

    The UK’s data protection legislation is currently derived from the EU’s 1995 Data Protection Directive (95/46/EC). In May 2018, this will be replaced by the EU’s General Data Protection Regulation (GDPR) which will be directly applicable across the EU (together with a new Data Protection Directive for the police and criminal justice sector).

  • Privacy on parade – the circumscribed right to a private life

    01 June 2016

    A new ruling of the Employment Appeal Tribunal (EAT) raises important questions about when employees can have a reasonable expectation of privacy in respect of material on their personal devices.

Back To Top