On 23 May, the Data Protection Act 2018 was finally passed into law. The new Act repeals the Data Protection Act 1998, and facilitates the implementation into UK law of the General Data Protection Regulation (EU)...
An update from FCA and the ICO confirms FCA’s view that firms can comply with both the GDPR and its rules. The update notes that GDPR is a board level responsibility, and firms must produce evidence to show what...
The ICO has fined four firms a total of £600,000: Barrington Claims Limited had made over 15 million automated calls about PPI; Newday Limited used other firms to send 44.7 million spam emails to promote its financial...
The ICO has fined Vanquis Bank £75,000 for sending 870,000 texts and 620,000 emails promoting its credit cards to recipients who had not consented to receive them. It had used marketing lists from other organisations...
The Information Commissioner’s Office has fined Provident Personal Credit Ltd £80,000 for sending nearly 1 million unsolicited texts promoting personal loans. The company used third party affiliates to send the...
The Information Commissioner’s Office (ICO) recently published its information rights strategic plan 2017 – 2021. The strategic plan sets out the ICO’s mission to increase the trust that the public has in...
Giovanni Buttarelli, the European Data Protection Supervisor (EDPS) presented the EDPS Annual Report 2016 to the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs on 4 May 2017. By way of...
The ICO has fined Monevo Limited, a finance brokerage firm, £40,000 for sending unsolicited marketing texts without proper consent. Between April 2016 and June 2016, the company sent 44,172 texts encouraging people to...
The UK Government has launched a Call for Views on the derogations (exemptions) from the EU General Data Protection Regulation (GDPR), which comes into force on 25 May 2018. Although there is limited scope for...
The Information Commissioner’s Office (ICO) recently announced that it has received a large number of responses to its consultation on the draft GDPR Consent guidance. The GDPR Consent guidance sets down the...
The ICO has fined a credit broker £20,000 for sending unsolicited communications in breach of regulation 22 of the Privacy and Electronic Communications (EC Directive) Regulations 2003. Munee Hut markets its services...
The Information Commissioner’s Office (ICO) and FCA have published a summary of their forum on the use of Big Data in retail general insurance. The forum, held on 16 January 2017, was to engage with the insurance...
The ICO has fined Digitonomy Ltd £120,000 for sending millions of marketing texts without proper consent. The company is an FCA-authorised credit broker, which generates leads for its business through affiliates sending...
The Information Commissioner’s Office (ICO) has issued Royal & Sun Alliance Insurance PLC (RSA) with a monetary penalty notice (£150,000) because of a serious breach of the seventh principle (the requirement...
The ICO has recently issued a revised Privacy Notices Code of Practice, which we have reviewed in our recent article on the Code for the Privacy and Data Protection Journal.
On 3 November, the ICO imposed a monetary penalty of £70,000 on Nouveau Finance Limited for marketing activities carried out on Nouveau’s behalf by a third party in contravention of the Privacy and Electronic...
The UK Government has confirmed that the UK will adopt the GDPR . Secretary of State Karen Bradley MP stated: ‘We will be members of the EU in 2018 and therefore it would be expected and quite normal for us to opt...