Category: PECR

DATE November 3, 2020 5:04 pm POSTED BY CATEGORY Blog

Outsourced DPO –Privacy by design and by default

Reading the ICO’s monetary penalty notice (MPN) served on Marriott one notes that the fine relates to infringements (Articles 32 and 5(1)(f)) of the GDPR between the dates of 25th May 2018 and 18th September 2018 despite the personal data breach occurring on-going from July 2014.  The MPN sets out...
View Article »
DATE November 2, 2020 11:41 am POSTED BY CATEGORY Blog

The Marriott Hotel Fined £18.4 Million

So, last week the ICO levied a fine of £18.4m on Marriott for a personal data breach affecting an estimated 339 million people over a 4-year period.  If you use the unorthodox method of evaluating monetary penalties of vP = n/F (the value of privacy is equal to the number...
View Article »
DATE October 29, 2020 11:47 am POSTED BY CATEGORY Blog

Manchester based company fined £250,000 for nuisance calls

A claims management company in Manchester has been fined £250,000 for making millions of nuisance calls The Information Commissioner’s Office (ICO) has fined Reliance Advisory Limited (RAL) £250,000 for breaking electronic marketing law. The Bury-based company made 15.1 million calls in relation to claims management services such as mis-sold PPI....
View Article »
DATE March 20, 2020 3:18 pm POSTED BY CATEGORY Blog

PECR and Phone Calls

In some previous blogs the Outsourced DPO considered the background to the PECR, how they interact with, compliment and “trump” the DPA and GDPR, and the general prohibition on unsolicited direct marketing via electronic communications systems and equipment.  We looked at the definition of direct marketing and found it to...
View Article »
DATE March 4, 2020 2:48 pm POSTED BY CATEGORY Blog

What is direct marketing?

What is direct marketing? In the previous blog the Outsourced DPO considered the background to the PECR, how they interact with, compliment and “trump” the DPA and GDPR, and the general prohibition on unsolicited direct marketing via electronic communications systems and equipment.  In this blog the Outsourced DPO takes a...
View Article »
DATE February 25, 2020 2:35 pm POSTED BY CATEGORY Blog

PECR – they are still around!!!

PECR. They are still around! When discussing the Privacy and Electronic Communications Regulations (2003) (as amended numerous times) the Outsourced DPO usually finds one of several reactions: What? Never heard of ‘em. No! That can’t possibly be right – it’s bonkers! But I thought they were replaced by the GDPR....
View Article »
DATE January 7, 2020 2:12 pm POSTED BY CATEGORY Blog

Company fined for use of publicly available information

Company fined for use of publicly available information. One of the common misconceptions about data protection law is that data in the public domain is a freely available resource to which the law does not apply.  For example, some people believe that telephone numbers on websites are not subject to...
View Article »
DATE August 10, 2016 8:32 pm POSTED BY CATEGORY Blog

PECR breach provides a good lesson

This is the first blog I have done in relation to the Privacy and Electronic Communications Regulations for some time and it’s been prompted by a compliance breach that I came across a couple of weeks ago that I thought would be worthwhile sharing. Scenario Fred started work as a...
View Article »