UK ICO – Debevoise Data Blog

GDPR

European Data Protection Roundup – February

By: Robert Maddox, Friedrich Popp, Fanny Gauthier, Aisling Cowell, Stephanie Thomas, Tristan Lockwood, Maria Epishkina, Sophie Michalski, Alexandre Pous and Maria Santos March 27, 2023

Key takeaways from this February include: Enforcement: Businesses that use third party data to conduct marketing should review the lawful basis on which each party relies to collect and process…

Privacy

Privacy by Design: Insights from the UK ICO’s Product Design Forum

By: Robert Maddox, Stephanie Thomas, Maria Epishkina and Maria Santos March 8, 2023

On 23 February 2023, the UK ICO hosted its latest privacy forum in a series aimed at helping product designers and managers incorporate “privacy by design” or “data protection by…

Enforcement

European Data Protection Roundup – December 2022 and January 2023

By: Robert Maddox, Friedrich Popp, Fanny Gauthier, Stephanie Thomas, Tristan Lockwood, Melissa Muse, Anya Allen, Emily Morgan, Alexandre Pous and Maria Santos February 20, 2023

Key takeaways from December and January include: Cookies: Businesses should consider reviewing their cookie compliance following major CNIL fines against Microsoft (€60 million) and TikTok (€5 million) calling for companies…

Cybersecurity

GDPR Technical and Organisational Measures: Lessons from the UK ICO’s £4.4m Data Breach Penalty

By: Erez Liebermann, Robert Maddox, Stephanie Thomas and Tristan Lockwood October 27, 2022

On 24 October 2022, the UK Information Commissioner’s Office (“ICO”) fined Interserve Group Limited £4.4 million for failing to implement appropriate technical and organisational measures to safeguard 113,000 individuals’ personal…