Suffolk Police apology over sex abuse victims’ data on website – BBC News
‘An investigation has begun after the personal details of sexual abuse victims appeared on a police website.’
BBC News, 15th November 2022
Source: www.bbc.co.uk
Category: data protection
The small boats storm and the unlawful seizure of mobile phones – UK Human Rights Blog
‘The storm raging around small boats arriving on the south coast has been brewing for some time. In early summer the focus was a policy to send arrivals to Rwanda. Intervention by the European Court of Human Rights effectively suspended flights while a domestic ruling on the policy’s legality is awaited. Meanwhile, in Dover a migrant processing centre has been firebombed, another is dangerously overcrowded, and the new Home Secretary raises tensions by speaking of an “invasion”.’
UK Human Rights Blog, 4th November 2022
Source: ukhumanrightsblog.com
Information commissioner warns firms over ‘emotional analysis’ technologies – The Guardian
‘The information commissioner has warned companies to steer clear of “emotional analysis” technologies or face fines, because of the “pseudoscientific” nature of the field.’
The Guardian, 25th October 2022
Source: www.theguardian.com
DPA breach at “lowest end of spectrum”: High Court awards £250 – Panopticon
‘Just about anyone who works in data protection will probably have asked, or have been asked: what do courts tend to award claimants who suffer data breaches? They will probably also be used to an answer along the lines that “it’s quite difficult to say; there isn’t very much case law”. Last week’s judgment of Knowles J in Driver v Crown Prosecution Service [2022] EWHC 2500 (KB) is a helpful contribution to this limited line of authority.’
Panopticon, 17th October 2022
Source: panopticonblog.com
Claim worth £3,000 moved after costs rose towards £50,000 – Law Society’s Gazette
‘A High Court judge has made a veiled warning to solicitors not to over-plead on data protection cases and incur massive costs on unnecessary litigation.’
Law Society’s Gazette, 10th October 2022
Source: www.lawgazette.co.uk
New property rights relevant to ‘data objects’ proposed – OUT-LAW.com
‘A new property right that recognises an individual or entity’s control over “data objects” should be established in law in England and Wales, the Law Commission has said.’
OUT-LAW.com, 3rd October 2022
Source: www.pinsentmasons.com
The Data Protection and Digital Information Bill: A new UK GDPR? – Local Government Lawyer
‘In July the Government published the Data Protection and Digital Information Bill, the next step in its much publicised plans to reform the UK Data Protection regime following Brexit. Ibrahim Hasan sets out the key changes.’
Local Government Lawyer, 9th September 2022
Source: www.localgovernmentlawyer.co.uk
Quantifying Damages for Psychiatric Injury and Distress Caused by Data Breaches – Ropewalk Chambers
‘Both s. 13 of the Data Protection Act 1998 (“DPA 98”) and Art. 82 of the General Data Protection Regulation (“GDPR”) provide an individual with a right to compensation where she suffers material or non-material damage (including distress) – see Google Inc v Vidal-Hall [2015] EWCA Civ 311 and s. 168 of the Data Protection Act 2018 (“DPA 18”) as a result of infringements of the data protection principles contained in the respective legislative schemes. The DPA 98 applies to data breaches occurring before 23 May 2018 whilst the GDPR, as supplemented by DPA 18, applies to breaches occurring on or after that date. After the end of the post-Brexit implementation period on 31 January 2020 the UK GDPR applies.’
Ropewalk Chambers, 26th July 2022
Source: www.ropewalk.co.uk
UK Data Protection and Digital Information Bill: in detail – OUT-LAW.com
‘New data protection laws proposed by the UK government are intended to promote data-driven innovation and reduce some of the burdens organisations have come to associate with the General Data Protection Regulation (GDPR).’
OUT-LAW.com, 20th July 2022
Source: www.pinsentmasons.com
Public uncomfortable with tech firms’ use of court data – Legal Futures
‘Less than a fifth (18%) of the public are comfortable with the use of data from the courts by tech companies, a major study has found.’
Legal Futures, 21st July 2022
Source: www.legalfutures.co.uk
Artificial intelligence rules to require human liability – Law Society’s Gazette
‘Artificial intelligence systems will have to identify a legal person to be held responsible for any problems under proposals for regulating AI unveiled by the government today.’
Law Society's Gazette, 18th July 2022
Source: www.lawgazette.co.uk
Data watchdog reprimands government over pandemic WhatsApp use – BBC News
‘The Department of Health has been reprimanded over ministers’ and officials’ use of messaging apps and private email during the pandemic.’
BBC News, 11th July 2022
Source: www.bbc.co.uk
UK data watchdog to scale back fines for public bodies – The Guardian
‘The UK’s data watchdog is to scale back fines for public bodies after admitting that users of services often bear the brunt of the financial punishment. The Information Commissioner’s Office will continue to issue fines for the most serious cases of data breaches in the public sector, but otherwise it will lean on other powers within its remit such as warnings, reprimands and enforcement notices.’
The Guardian, 30th June 2022
Source: www.theguardian.com
Upcoming Data Reform Bill “to give Parliament and Government greater oversight” of Information Commissioner’s Office – Local Government Lawyer
‘The Government has set out plans to reform the Information Commissioner’s Office (ICO) that will give Parliament and the Secretary of State greater oversight of the data regulator and broaden the legal responsibility underpinning its work.’
Local Government Lawyer, 21st June 2022
Source: www.localgovernmentlawyer.co.uk
UK data protection reforms announcement imminent – OUT-LAW.com
‘The UK government has said it expects to outline its plans for reform to data protection law this month.’
OUT-LAW.com, 14th June 2022
Source: www.pinsentmasons.com
ICO fines “World’s largest facial network” – Local Government Lawyer
‘The Information Commissioner’s Office has issued a Monetary Penalty Notice of £7,552,800 to Clearview AI Inc for breaches of the UK GDPR. Ibrahim Hasan looks at the background to the case.’
Local Government Lawyer, 10th June 2022
Source: www.localgovernmentlawyer.co.uk
‘The worst law on earth’: why the rich love London’s reputation managers – The Guardian
‘Boris Johnson has vowed to level the playing field on which oligarchs stifle those who scrutinise them. How can he do it?’
The Guardian, 8th June 2022
Source: www.theguardian.com
Guidelines highlight challenges of facial recognition technology as Clearview AI fined – OUT-LAW.com
‘Guidelines recently issued by the European Data Protection Board (EDPB) focus on the use of facial recognition technology in the context of law enforcement, but one expert has highlighted how some commentary within the guidelines has broader application and how the EDPB’s views align with the views of the UK’s Information Commissioner’s Office (ICO).’
OUT-LAW.com, 30th May 2022
Source: www.pinsentmasons.com
TalkTalk: Clever pleading cannot guide Claimants out of Warren – Panopticon
‘Since last year, Warren has proved a thorn in the side of those bringing claims arising out of external cyber-attacks – appearing, at least, to bar such Claimants from relying on the torts of negligence and misuse of private information (MPI), as well as breach of confidence. That appearance was confirmed to be reality by Saini J in Graeme Smith & ors v TalkTalk Telecom Group plc [2022] EWHC 1311 (QB). Avid readers of Panopticon will observe that it was Saini J who also decided Warren, thus confirming the position in Smith (not the South African cricketer), in the face of attempts by the Claimants initially to suggest that Warren was wrongly decided; diluted subsequently to seek to distinguish it on the facts. Saini J’s confirmation of the position post-Warren (and explaining that had given consideration to the case of Swinney v Chief Constable of Northumbria Police Force [1997] QB 464), is important, as it makes the law clear, following HHJ Pearce’s decision in Collins & Ors v Ticketmaster UK Limited [2022] Costs LR 123. In Collins, the Court had not decided the point, but did permit an amendment to plead MPI in a data breach case despite Warren – although “could not say that the claim went beyond that which was arguable”. HHJ Pearce permitted the amendment in Collins where the claimants had argued that Warren could be distinguished and did not apply to cases where the defendant had taken a deliberate decision to conduct its business in a manner that did not comply with the relevant industry standard – as opposed to “pure” omission cases. The clarity now provided by Saini J is welcome, given the importance of the feasibility of MPI claims in this field to claimants potentially being able to recover ATE premia (the conventional wisdom being that they are irrecoverable in DPA/GDPR claims).’
Panopticon, 30th May 2022
Source: panopticonblog.com
UK watchdog fines facial recognition firm £7.5m over image collection – The Guardian
‘The UK’s data watchdog has fined a facial recognition company £7.5m for collecting images of people from social media platforms and the web to add to a global database.’
The Guardian, 23rd May 2022
Source: www.theguardian.com
