DATE September 11, 2020 1:12 pm
POSTED BY David Hendry
CATEGORY
Blog
It is almost a year since the Outsourced DPO received a subject access request from an information rights platform and at the time, we were filled with suspicion. Several months and many SARs later, has anything changed? Back in December, receiving a SAR from an intermediary platform (Rightly.co.uk) seemed rather...
View Article »
DATE March 23, 2020 3:15 pm
POSTED BY David Hendry
CATEGORY
Blog
The Outsourced DPO is dusting off the binding corporate rules play book! It’s some time since we were involved in drafting BCRs and were delighted for one of our global clients to ask us to get involved with creating BCRs for their operations in over 80 countries last week. Of...
View Article »
DATE March 20, 2020 3:18 pm
POSTED BY David Hendry
CATEGORY
Blog
In some previous blogs the Outsourced DPO considered the background to the PECR, how they interact with, compliment and “trump” the DPA and GDPR, and the general prohibition on unsolicited direct marketing via electronic communications systems and equipment. We looked at the definition of direct marketing and found it to...
View Article »
DATE February 25, 2020 2:35 pm
POSTED BY David Hendry
CATEGORY
Blog
PECR. They are still around! When discussing the Privacy and Electronic Communications Regulations (2003) (as amended numerous times) the Outsourced DPO usually finds one of several reactions: What? Never heard of ‘em. No! That can’t possibly be right – it’s bonkers! But I thought they were replaced by the GDPR....
View Article »
DATE February 12, 2020 2:23 pm
POSTED BY David Hendry
CATEGORY
Blog
Five steps to secure data Data Protection has been in the spotlight for the last few years as more and more cases of theft and security breaches occur. Businesses can take five relatively simple steps to improve their data protection and ensure they give consumers confidence and the right experience. 1)...
View Article »
DATE January 31, 2020 2:18 pm
POSTED BY David Hendry
CATEGORY
Blog
This week gave us something fantastic to celebrate and I am not speaking of Brexit. The 28th January was the 13th annual International Data Protection/Privacy Day! What? You can’t have missed all the fanfare and razamataz? 28th January is of course, the anniversary of the opening for signature of European Convention 108 for...
View Article »
DATE January 16, 2020 2:15 pm
POSTED BY David Hendry
CATEGORY
Blog
The Outsourced DPO has been having a green January utilising the under-used Esk Valley Railway for his daily commute to Leeds. This has meant more time for reading – which is a good thing given the changes in the data protection legislative landscape around the world. It was 5 or...
View Article »
DATE January 7, 2020 2:12 pm
POSTED BY David Hendry
CATEGORY
Blog
Company fined for use of publicly available information. One of the common misconceptions about data protection law is that data in the public domain is a freely available resource to which the law does not apply. For example, some people believe that telephone numbers on websites are not subject to...
View Article »
DATE December 18, 2019 2:07 pm
POSTED BY David Hendry
CATEGORY
Blog
The Outsourced DPO has seen an increasing number of subject access requests submitted via a third-party service sites making for an interesting trend. In the last few months there seems to have been an increasing number of web sites and apps offering to submit subject access requests on behalf of...
View Article »
DATE December 10, 2019 1:52 pm
POSTED BY David Hendry
CATEGORY
Blog
There seems to be some confusion out there about the requirement to register with the ICO – the Outsourced DPO was asked about this on four separate occasions last week. If you cast your mind back, articles 18 and 19 of the Data Protection Directive (Directive 95/46/EC) contained an obligation...
View Article »