Article categories

Facebook to update cookie consent controls on Facebook & Instagram in Europe

Facebook App Icon on mobile phone

Their aim is to improve alignment with the ePrivacy Directive (UK – PECR) and GDPR. Facebook announced via their newsroom on Thursday (23rd September 2021) that they will be changing their cookie consent controls within the European region for Facebook and Instagram users. The goal is to give users “a more granular level of control” …

Read more

Europe data privacy decisions round-up August 2021

A round-up of some of the most recent data privacy decisions led by data protection authorities in Europe. United Kingdom The High Court of England and Wales held that controllers and processors outside of the EU that nominate a representative under Article 27 GDPR cannot outsource liability for breaches of the GDPR. The representative can …

Read more

Most ironic PECR fine yet as firm selling nuisance call blocker fined under TPS rules

Old phone sitting on desk

A new contender for the most ironic PECR fine yet has entered the ring: The Information Commissioner’s Office (ICO), in the United Kingdom, has fined Yes Consumer Solutions Limited (YCSL) £170,000 for making 188,493 unsolicited direct marketing calls to customers registered with the Telephone Preference Service (TPS). The fine follows an assessment under the Privacy …

Read more

How much are GDPR fines?

There are two tiers of fine under the EU-GDPR & UK-GDPR. The tiers are based on the type of violation and the type of data processing concerned.  Most organisations fall within the lower-level tier. How is the value of the fine decided? Supervisory authorities consider multiple factors when deciding on the value of the fine …

Read more

Can an individual get a GDPR fine?

Worried about being personally liable for 20 million euro fine?  (errr, do you guys take card?) We’ve got good news, it’s highly unlikely, unless your side hustle is a one-employee Facebook clone. But it’s not totally straightforward.  It is quite easy to find yourself liable for some smaller fines. So in this article we’ll explore …

Read more

GDPR & Recaptcha: How to stay compliant with GDPR

ReCaptcha I am not a robot pattern

Google Recaptcha is a great tool for preventing spam and abuse of your website. It’s easy to integrate, effective and free. What’s not to like? Well, while this tool is great for preventing spam, it can create another set of problems for you in terms of GDPR compliance.  In this article we will explore how …

Read more

GDPR & Google Analytics 4: What you need to know

Google Analytics on a Laptop

Thinking of switching to the new Google Analytics 4? Stay GDPR compliant by reading our short guide where we’ll outline the areas you should pay the most attention to when making the switch. Switching to Google Analytics 4 gives marketers & site managers a wide range benefits: Machine learning: access to automatic insights and improved …

Read more

ICO fines protein e-commerce company Muscle Foods Limited for sending millions of marketing messages without valid consent

Salmon and High Protein Foods on a Table

Over seven months, the ICO estimates that protein retailing e-commerce company Muscle Food sent 135,651,627 marketing emails and 6,354,426 marketing SMS messages without valid consent. The ICO have issued Muscle Foods Limited, trading as Muscle Food, a monetary penalty notice and enforcement notice imposing a fine of £50,000 for sending approximately 135,651,627 marketing emails and …

Read more

ICO fines “Digital Growth Experts Ltd” £60,000 for sending thousands of nuisance marketing texts during coronavirus pandemic

Handgel Applied to Woman's Hand

The ICO have recently fined “Digital Growth Experts Ltd”, formerly “Motorhome Brokers Ltd” for sending thousands of marketing text messages without consent.  This brazen breach of PECR occured between 29 February and 30 April 2020. Reportedly, 16,190 messages were received, promoting a hand sanitising gel. During their investigation the ICO found that Digital Growth Experts …

Read more

Do you need a GDPR Representative in the EU?

EU Flag with Star Missing to represent Brexit UK Withdrawal

By the time the UK left the EU on the 1st January 2020, the European Union’s GDPR rules and been written into UK law under the Data Protection Act. The rules have stayed almost identical to the original EU GDPR text, with the exception of some local previsions relating to enforcement and action, and the …

Read more