Video surveillance (including guidance for organizations using CCTV)

The steady growth of the use of video surveillance systems across public and private sectors, has led to both fixed and mobile cameras becoming more accepted in society. As video surveillance technology becomes more mainstream and affordable, it is now more common to see technologies such as smart doorbells and wireless cameras. Traditional closed circuit […]

Read More… from Video surveillance (including guidance for organizations using CCTV)

Guidance on direct marketing using electronic mail

The Privacy and Electronic Communications Regulations 2003 (as amended) (PECR) cover the sending of electronic mail for direct marketing purposes. This guidance discusses electronic mail marketing in detail. Read it if you have detailed questions not answered in the Guide to PECR, or if you need a deeper understanding of how PECR applies to electronic […]

Read More… from Guidance on direct marketing using electronic mail

Luxembourg delivers first GDPR accreditation

The national commission for data protection has become the first data protection authority in Europe to accredit a GDPR certification body. On 12 October, Luxembourg’s national commission for data protection accredited the entity EY PFS Solutions via its certification mechanism, GDPR-CARPA (General Data Protection Regulation-Certified Assurance Report-Based Processing Activities). The mechanism is the first to be adopted […]

Read More… from Luxembourg delivers first GDPR accreditation

Who is responsible for complying with the rules on live marketing calls?

In general, the PECR rules apply to anyone that wishes to make unsolicited live calls for the purposes of direct marketing. It is the ‘caller’ or the ‘instigator’ of the call who has responsibility for complying with the rules. PECR do not define the term instigator. However, you are likely to be instigating if you […]

Read More… from Who is responsible for complying with the rules on live marketing calls?

President Biden Signs Executive Order to Implement the European Union-U.S. Data Privacy Framework

President Biden signed an Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities (E.O.) directing the steps that the United States will take to implement the U.S. commitments under the European Union-U.S. Data Privacy Framework (EU-U.S. DPF) announced by President Biden and European Commission President von der Leyen in March of 2022.  The […]

Read More… from President Biden Signs Executive Order to Implement the European Union-U.S. Data Privacy Framework

ICO Plan for the upcoming period – ICO 25

Introduction On 19th July 2022 the Information Commissioner’s Office (ICO) held its annual Data Protection Practitioners’ Conference – the first with John Edwards in the role of Commissioner. ICO25 A key theme running through many of the sessions was the ICO’s draft strategic plan “ICO25” and, in particular, the four proposed strategic objectives to: (i) safeguard […]

Read More… from ICO Plan for the upcoming period – ICO 25

Lawful way of direct marketing using live calls

It’s important that you understand the rules when you’re making your marketing calls. The Privacy and Electronic Communications Regulations 2003 (as amended) (PECR) cover live telephone calls made for direct marketing purposes. This guidance discusses live marketing calls in detail. Read it if you have detailed questions not answered in the Guide to PECR, or […]

Read More… from Lawful way of direct marketing using live calls

UK plans how to replace GDPR?

The UK appears to be pushing ahead with plans to reform the country’s data protection regime, potentially foisting more red tape on British businesses. In a speech at the Conservative party conference this week, new digital secretary Michelle Donelan reiterated the government’s intention to move away from the EU’s General Data Protection Regulation (GDPR), while […]

Read More… from UK plans how to replace GDPR?

Digital Age of Consent under the GDPR

GDPR incorporated a separate article that regulates the processing of children’s personal data where children can provide valid consent on their behalf. As per Article 8 of the GDPR, where consent is the most appropriate mechanism to process personal data, ‘in relation to the offer of information society services directly to a child, the processing […]

Read More… from Digital Age of Consent under the GDPR

Instagram fined for violating GDPR regulations

The Irish Data Protection Commission fined Instagram in amount of €405 million euros for breaching the privacy rights of children under the EU General Data Protection Regulation. The investigation focused on how the platform allowed users aged between 13 to 17 years to operate accounts which showed their phone numbers and email addresses. This is […]

Read More… from Instagram fined for violating GDPR regulations