By the time the UK left the EU on the 1st January 2020, the European Union’s GDPR rules and been written into UK law under the Data Protection Act. The rules have stayed almost identical to the original EU GDPR text, with the exception of some local previsions relating to enforcement and action, and the …
Is your cookie banner breaking the law? Probably. Most website owners will remember the rush many years ago, to comply with the “EU Cookie Law”. The original 2011 directive made cookie notices a part of internet life. But it didn’t really do much for people’s privacy. Compliance was at best — patchy. Some of us …
On the 10th July 2020, the AEPD – Spain’s data protection authority initiated a sanctioning procedure to fine the Barcelona Airport Security Guard Association (AVSAB) under the GDPR. The case found that a member of the AVSAB security group had used WhatsApp to send messages to private phone numbers containing personal information about employees. The …
If you have old contacts sitting around in your CRM or email marketing software, now is the time to delete them. Because recent cases tell us, regulators are paying increasing attention to GDPR’s requirement to only keep data for as long as you need it. On the 27th of August 2020, Danish data protection authority …
On 6 August 2020, the AEPD (Spain’s data authority) decided to fine Grow Beats SL, an e-commerce company that targets a young audience to sell audio equipment like earphones and speakers, €3,000 for unlawful cookie practices. The fine relates to their unlawful use of cookies on the website. Specifically, that there mechanism was established to …
On the 4th March 2020 the ICO reported that they will fine Hong-Kong based airline Cathay Pacific £500,000 for failing to protect customer’s personal data – under the data protection act. The ruling is the result of an investigation by the ICO into Cathay Pacific following a high-profile data-breach which exposed the personal details of …
