On 13 September 2020, the Australian Government commenced consultation on the exposure draft of the Data Availability and Transparency Bill (the Bill), which is intended to enable greater data-sharing within government and to facilitate ‘seamless’ service delivery to the public. The Bill aims to minimise constraints on the sharing of public sector data between government … Read more

Following a public consultation on its draft code of practice with parents, children, schools, children’s campaign groups, developers, tech and gaming companies and online service providers which closed on 31 May 2019, the Information Commissioner’s Office (ICO) submitted its Age-Appropriate Design Code of Practice on 12 November 2019 but due to restrictions in the pre-election … Read more

In this update, we provide you with a brief summary of two recent developments in relation to sanctions imposed under the General Data Protection Regulation (“GDPR”). Firstly, the Berlin Data Protection Authority (“Berlin DPA”) recently announced its willingness to impose multimillion-euro fines for breaches of the GDPR. This shows that also in Germany significant fines … Read more

A recent post on the ICO’s AI Auditing Framework blog explores human bias and discrimination in AI systems, together with some of the technical and organisational measures which can be implemented to mitigate the legal risks associated with these issues. Read more

The ICO has published a notice of its intent to fine British Airways £183.39 million for its 2018 data breach where the personal data of 500,000 customers was stolen by hackers; This is the first ‘mega fine’ issued by a European data regulator since the implementation of the GDPR; The ICO acted as lead supervisory … Read more

In the spring edition of In-House Lawyer, Matthew White looks ahead to the ever-changing challenges and opportunities of urban growth. “The We Company recently announced new ‘future cities initiatives’ which will combine technology, data and real estate to ‘help address problems spurred by globalisation, urbanisation and climate change.’ The project will involve a team of … Read more

The ICO has fined EE £100,000 under the Data Protection Act 1998 (“DPA“) for sending text messages to customers without their consent, in breach of the Privacy and Electronic Communications Regulations 2003 (“PECR“). Background In February and March 2018 EE sent direct marketing text message to customers informing them that they would soon be eligible … Read more

The GDPR came into effect almost a year ago on the 25 May 2018. As the most significant reform of data protection law in Europe for over 20 years, the legislation raised expectations of a cultural shift in attitude to data privacy. A year on from the fanfare of implementation, this bulletin looks at key … Read more