Key lessons from recent cases on subject access requests

As you know, governments make laws and the courts interpret and apply them.  This is demonstrated by some significant decisions recently handed down which impact how data controllers (such as employers) respond to SARs (subject access requests). These decisions considered key Continue reading Key lessons from recent cases on subject access requests

Nursing home fined £15,000 for data security breach

 Introduction In August 2016 the Information Commissioner’s Office, (‘the ICO’) announced that it had fined Whitehead Private Nursing Home, (‘the nursing home’), £15,000 for breaking the law by not looking after the sensitive personal details in its care. The legal Continue reading Nursing home fined £15,000 for data security breach

GP surgery fined £40,000 for failing to protect patient’s personal data

A GP practice that revealed confidential details about a woman and her family to her estranged ex-partner has been fined £40,000. The practice gave out the information despite express warnings from the woman that staff should take particular care to protect Continue reading GP surgery fined £40,000 for failing to protect patient’s personal data

MPs say CEO pay should be linked to effective cybersecurity

A recent parliamentary report, (Cyber Security: Protection of Personal Data Online) recommends several new measures that businesses should adopt to improve their cybersecurity including: A portion of CEO compensation should be linked to effective cybersecurity, in a way to be Continue reading MPs say CEO pay should be linked to effective cybersecurity