Blog posts
Our expert consultants at Handley Gill share their knowledge and advice on emerging data protection, privacy, content regulation, reputation management, cyber security, and information access issues in our blog.
Featured
Cyber Security, Cyber Resilience, DORA, Digital Operational Resilience Act, Regulation (EU) 2022/2554, Banking, Finance, Financial Services, Insurance, Supply Chain Security, Supply Chain Risk, Vendor Management, Due Diligence, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Human Rights Act 1998, Human Rights, Business Resilience, Business Continuity, Commission Delegated Regulation (EU) 2024/1773
Cyber Security, Cyber Resilience, DORA, Digital Operational Resilience Act, Regulation (EU) 2022/2554, Banking, Finance, Financial Services, Insurance, Supply Chain Security, Supply Chain Risk, Vendor Management, Due Diligence, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Human Rights Act 1998, Human Rights, Business Resilience, Business Continuity, Commission Delegated Regulation (EU) 2024/1773
With just one month until the EU Digital Operational Resilience Act becomes applicable, Handley Gill’s consultants examine the requirements imposed by DORA on financial entities and, by extension, their third party ICT service providers in relation to their contractual arrangements and obligations to provide information, and identify where financial entities may be seeking to impose adverse commercial terms on their supply chain under the guise of DORA compliance.
Cyber Security, Cyber Resilience, DORA, Digital Operational Resilience Act, Regulation (EU) 2022/2554, Banking, Finance, Financial Services, Insurance, Supply Chain Security, Supply Chain Risk, Vendor Management, Due Diligence, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Human Rights Act 1998, Human Rights, Business Resilience, Business Continuity, Commission Delegated Regulation (EU) 2024/1773
Artificial Intelligence, AI, Copyright, Copyright Infringement, Copyright Designs and Patents Act 1988, Intellectual Property, Intellectual Property Rights, Intellectual Property Office, Department for Science Innnovation & Technology, Department for Culture Media & Sport, AI Training, AI Training Data, Web Scraping, Data Mining, Consultation, Copyright and Artificial Intelligence Consultation, Copyright & AI Consultation, AI Regulation, AI Regulation White Paper, A pro-innovation approach to AI regulation
Artificial Intelligence, AI, Copyright, Copyright Infringement, Copyright Designs and Patents Act 1988, Intellectual Property, Intellectual Property Rights, Intellectual Property Office, Department for Science Innnovation & Technology, Department for Culture Media & Sport, AI Training, AI Training Data, Web Scraping, Data Mining, Consultation, Copyright and Artificial Intelligence Consultation, Copyright & AI Consultation, AI Regulation, AI Regulation White Paper, A pro-innovation approach to AI regulation
Handley Gill’s specialist responsible artificial intelligence (AI) consultants summarise the UK government’s consultation on Copyright and Artificial Intelligence and consider the implications of the proposed copyright reforms for rights holders.
Artificial Intelligence, AI, Copyright, Copyright Infringement, Copyright Designs and Patents Act 1988, Intellectual Property, Intellectual Property Rights, Intellectual Property Office, Department for Science Innnovation & Technology, Department for Culture Media & Sport, AI Training, AI Training Data, Web Scraping, Data Mining, Consultation, Copyright and Artificial Intelligence Consultation, Copyright & AI Consultation, AI Regulation, AI Regulation White Paper, A pro-innovation approach to AI regulation
Data (Use and Access) Bill, Data Protection, Personal Data, HL Bill 40, HL Bill 40 2024-25, Data Protection Reform, Data Reform Bill, Data Bill, Digital Information and Smart Data Bill, Data Protection Legislation, Data Protection & Digital Information (No.2) Bill, Data Protection and Digital Information Bill, Data Protection and Digital Information (No. 2) Bill, Data Protection Act 1998, DATA PROTECTION ACT 2018, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, Privacy and Electronic Communications (EC Directive) Regulations 2003, PECR
Data (Use and Access) Bill, Data Protection, Personal Data, HL Bill 40, HL Bill 40 2024-25, Data Protection Reform, Data Reform Bill, Data Bill, Digital Information and Smart Data Bill, Data Protection Legislation, Data Protection & Digital Information (No.2) Bill, Data Protection and Digital Information Bill, Data Protection and Digital Information (No. 2) Bill, Data Protection Act 1998, DATA PROTECTION ACT 2018, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, Privacy and Electronic Communications (EC Directive) Regulations 2003, PECR
As the Data (Use and Access) Bill continues its passage through the House of Lords, Handley Gill’s specialist data protection consultants summarise the second scrutiny session of the House of Lords’ Grand Committee on the Data (Use and Access) Bill on 10 December 2024, when peers began their consideration of the provisions of Part 5 of the Data (Use and Access) Bill on ‘Data protection and privacy’.
Data (Use and Access) Bill, Data Protection, Personal Data, HL Bill 40, HL Bill 40 2024-25, Data Protection Reform, Data Reform Bill, Data Bill, Digital Information and Smart Data Bill, Data Protection Legislation, Data Protection & Digital Information (No.2) Bill, Data Protection and Digital Information Bill, Data Protection and Digital Information (No. 2) Bill, Data Protection Act 1998, DATA PROTECTION ACT 2018, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, Privacy and Electronic Communications (EC Directive) Regulations 2003, PECR
Data Protection, PERSONAL DATA, Data (Use and Access) Bill, HL Bill 40, HL Bill 40 2024-25, Data Protection Reform, Data Reform Bill, Data Protection Legislation, Data Protection & Digital Information (No.2) Bill, Data Protection & Digital Information Bill, Digital Information and Smart Data Bill, Data Protection Act 1998, DATA PROTECTION ACT 2018, General Data Protection Regulation, GDPR, UK GENERAL DATA PROTECTION REGULATION, UK GDPR, Privacy and Electronic Communications Regulations 2003, PECR
Data Protection, PERSONAL DATA, Data (Use and Access) Bill, HL Bill 40, HL Bill 40 2024-25, Data Protection Reform, Data Reform Bill, Data Protection Legislation, Data Protection & Digital Information (No.2) Bill, Data Protection & Digital Information Bill, Digital Information and Smart Data Bill, Data Protection Act 1998, DATA PROTECTION ACT 2018, General Data Protection Regulation, GDPR, UK GENERAL DATA PROTECTION REGULATION, UK GDPR, Privacy and Electronic Communications Regulations 2003, PECR
As the Data (Use and Access) Bill continues its passage through the House of Lords, Handley Gill’s specialist data protection consultants summarise the first session of the House of Lords’ Grand Committee’s scrutiny of the Data (Use and Access) Bill on 03 December 2024.
Data Protection, PERSONAL DATA, Data (Use and Access) Bill, HL Bill 40, HL Bill 40 2024-25, Data Protection Reform, Data Reform Bill, Data Protection Legislation, Data Protection & Digital Information (No.2) Bill, Data Protection & Digital Information Bill, Digital Information and Smart Data Bill, Data Protection Act 1998, DATA PROTECTION ACT 2018, General Data Protection Regulation, GDPR, UK GENERAL DATA PROTECTION REGULATION, UK GDPR, Privacy and Electronic Communications Regulations 2003, PECR
Data Protection, Personal Data, Data (Use and Access) Bill, HL Bill 40, HL Bill 40 2024-25, Data Protection Reform, Data Protection Legislation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Data Protection Act 1998, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, GDPR, General Data Protection Regulation, Digital Information & Smart Data Bill, Data Protection & Digital Information Bill, DUA Bill, Data Bill, Data Reform Bill
Data Protection, Personal Data, Data (Use and Access) Bill, HL Bill 40, HL Bill 40 2024-25, Data Protection Reform, Data Protection Legislation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Data Protection Act 1998, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, GDPR, General Data Protection Regulation, Digital Information & Smart Data Bill, Data Protection & Digital Information Bill, DUA Bill, Data Bill, Data Reform Bill
In a comprehensive briefing, the Handley Gill’s specialist data protection consultants analyse the provisions of the Labour government’s Data (Use and Access) Bill (HL Bill 40 2024-25) as introduced in the House of Lords on 23 October 2024, the latest attempt after the Data Protection and Digital Information Bill to reform UK data protection law, as set out in the UK GDPR, Data Protection Act 2018, Data Protection Act 1998 and the Privacy and Electronic Communications Regulations 2003 (PECR).
Data Protection, Personal Data, Data (Use and Access) Bill, HL Bill 40, HL Bill 40 2024-25, Data Protection Reform, Data Protection Legislation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Data Protection Act 1998, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, GDPR, General Data Protection Regulation, Digital Information & Smart Data Bill, Data Protection & Digital Information Bill, DUA Bill, Data Bill, Data Reform Bill
Data Protection, Data Protection Reform, Data Protection Legislation, Data Use & Access Bill, Data Reform Bill, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Data Protection Act 1998, Privacy and Electronic Communications Regulations, PECR, Digital Information and Smart Data Bill
Data Protection, Data Protection Reform, Data Protection Legislation, Data Use & Access Bill, Data Reform Bill, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Data Protection Act 1998, Privacy and Electronic Communications Regulations, PECR, Digital Information and Smart Data Bill
Handley Gill’s specialist data protection consultants have prepared unofficial Keeling schedules showing track change mark ups of the changes proposed by the Data (Use & Access) Bill (HL Bill 40) to the Data Protection Act 2018, UK General Data Protection Regulation (UK GDPR) and Privacy and Electronic Communications Regulations 2003 (PECR) respectively. Download for free and sign up for updates on the Bill.
Data Protection, Data Protection Reform, Data Protection Legislation, Data Use & Access Bill, Data Reform Bill, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Data Protection Act 1998, Privacy and Electronic Communications Regulations, PECR, Digital Information and Smart Data Bill
Facial Recognition, Live Facial Recognition, Police, Policing, Law Enforcement, Data Protection, PERSONAL DATA, DATA PROTECTION ACT 2018, Part 3 Data Protection Act 2018, Law Enforcement Processing, Biometric data, Biometric Processing, Sensitive Processing, Human Rights, Human Rights Act 1998, European Convention on Human Rights, Article 8 ECHR, Privacy, Article 14 ECHR, LFR, Equality Act 2010, PSED, Public Sector Equality Duty, Discrimination, Bias, Surveillance, Surveillance Camera Commissioner, Biometrics Commissioner, AI, Artificial Intelligence, Biometrics & Surveillance Camera Commissioner
Facial Recognition, Live Facial Recognition, Police, Policing, Law Enforcement, Data Protection, PERSONAL DATA, DATA PROTECTION ACT 2018, Part 3 Data Protection Act 2018, Law Enforcement Processing, Biometric data, Biometric Processing, Sensitive Processing, Human Rights, Human Rights Act 1998, European Convention on Human Rights, Article 8 ECHR, Privacy, Article 14 ECHR, LFR, Equality Act 2010, PSED, Public Sector Equality Duty, Discrimination, Bias, Surveillance, Surveillance Camera Commissioner, Biometrics Commissioner, AI, Artificial Intelligence, Biometrics & Surveillance Camera Commissioner
In the first Parliamentary debate on police use of live facial recognition technology, significant concerns were raised in relation to the latitude afforded to chief officers in deploying the biometric artificial intelligence (AI) tool. Handley Gill’s specialist consultants, whose advice on the deployment of LFR was acknowledged during the debate, consider the implications of the new Labour government’s proposals to revisit the legislative and regulatory framework governing the deployment of live facial recognition by law enforcement.
Facial Recognition, Live Facial Recognition, Police, Policing, Law Enforcement, Data Protection, PERSONAL DATA, DATA PROTECTION ACT 2018, Part 3 Data Protection Act 2018, Law Enforcement Processing, Biometric data, Biometric Processing, Sensitive Processing, Human Rights, Human Rights Act 1998, European Convention on Human Rights, Article 8 ECHR, Privacy, Article 14 ECHR, LFR, Equality Act 2010, PSED, Public Sector Equality Duty, Discrimination, Bias, Surveillance, Surveillance Camera Commissioner, Biometrics Commissioner, AI, Artificial Intelligence, Biometrics & Surveillance Camera Commissioner
Cyber Security, Information Security, Cyber Security Risk Assessment, Information Security Risk Assessment, Cyber Resilience, Business Resilience, Technical & Organisational Measures, Supply Chain Risk, Supply Chain Security, Directors' Duties, Institute of Directors, Code of Conduct for Directors, GDPR, UK GDPR, General Data Protection Regulation, Article 25 GDPR, Article 25 UK GDPR, Article 32 UK GDPR, Article 32 GDPR, IoD
Cyber Security, Information Security, Cyber Security Risk Assessment, Information Security Risk Assessment, Cyber Resilience, Business Resilience, Technical & Organisational Measures, Supply Chain Risk, Supply Chain Security, Directors' Duties, Institute of Directors, Code of Conduct for Directors, GDPR, UK GDPR, General Data Protection Regulation, Article 25 GDPR, Article 25 UK GDPR, Article 32 UK GDPR, Article 32 GDPR, IoD
New guidance on good industry practice for directors issued by the Institute of Directors obliges directors and boards to identify and mitigate information and cyber security risks, and to prioritise business resilience, bringing a renewed focus to cyber resilience and supply chain security.
Cyber Security, Information Security, Cyber Security Risk Assessment, Information Security Risk Assessment, Cyber Resilience, Business Resilience, Technical & Organisational Measures, Supply Chain Risk, Supply Chain Security, Directors' Duties, Institute of Directors, Code of Conduct for Directors, GDPR, UK GDPR, General Data Protection Regulation, Article 25 GDPR, Article 25 UK GDPR, Article 32 UK GDPR, Article 32 GDPR, IoD
Institute of Directors, Code of Conduct for Directors, Directors, Directors' Duties, Companies Act 2006, Part 10 Chapter 2 Companies Act 2006, Section 172 Companies Act 2006, Corporate Governance, Company Law, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Corporate Social Responsibility, CSR, Principles of Director Conduct, Responsible Business, Best Practice, Good Industry Practice, Executive Directors, Non-Executive Directors, GRC, Governance, Company Directors, C Suite, Board of Directors
Institute of Directors, Code of Conduct for Directors, Directors, Directors' Duties, Companies Act 2006, Part 10 Chapter 2 Companies Act 2006, Section 172 Companies Act 2006, Corporate Governance, Company Law, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Corporate Social Responsibility, CSR, Principles of Director Conduct, Responsible Business, Best Practice, Good Industry Practice, Executive Directors, Non-Executive Directors, GRC, Governance, Company Directors, C Suite, Board of Directors
Handley Gill’s specialist ESG consultants consider the implications for company directors of the Institute of Directors’ recommendations for corporate governance best practice as set out in its voluntary Code of Conduct for Directors, and identify practical measures executive and non-executive directors can take to meet good industry practice in complying with the responsible business principle. Download our free primer on directors’ statutory duties under the Companies Act 2006 and best practice principles of the Institute of Directors’ Code of Conduct for Directors.
Institute of Directors, Code of Conduct for Directors, Directors, Directors' Duties, Companies Act 2006, Part 10 Chapter 2 Companies Act 2006, Section 172 Companies Act 2006, Corporate Governance, Company Law, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Corporate Social Responsibility, CSR, Principles of Director Conduct, Responsible Business, Best Practice, Good Industry Practice, Executive Directors, Non-Executive Directors, GRC, Governance, Company Directors, C Suite, Board of Directors
Data (Use and Access) Bill, Data Protection, Personal Data, Data Protection Legislation, Data Protection Reform, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Data Protection Act 1998, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, Information Commissioner, Online Safety, Online Safety Act 2023, Online Harms, HL Bill 40
Data (Use and Access) Bill, Data Protection, Personal Data, Data Protection Legislation, Data Protection Reform, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Data Protection Act 1998, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, Information Commissioner, Online Safety, Online Safety Act 2023, Online Harms, HL Bill 40
The new Labour government has today (23 October 2024) introduced the Data (Use and Access) Bill in the House of Lords, in the latest attempt to reform the UK’s data protection laws as set out in the UK GDPR, Data Protection Act 2018, Data Protection Act 1998 and Privacy and Electronic Communications Regulations.
Data (Use and Access) Bill, Data Protection, Personal Data, Data Protection Legislation, Data Protection Reform, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Data Protection Act 1998, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, Information Commissioner, Online Safety, Online Safety Act 2023, Online Harms, HL Bill 40
Data Protection, Personal Data, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, MARKETING, Direct Marketing, Email Marketing, Insolvency, Distress Business, Administration, Administrators, Mergers and Acquisitions, M&A, Corporate Law, Asset Sale, Asset Purchase, Share Purchase, Share Sale, Retail, IP, IPR, Intellectual Property, Intellectual Property Rights, CRM, CRM Database, ICO, Information Commissioner, Information Commissioner's Office, Data Protection Enforcement, Lawful Basis for Processing, ARTICLE 6 UK GDPR, Article 6(1)(f) UK GDPR, Legitimate Interests, Consent, Article 6(1)(a) UK GDPR, Distressed Business
Data Protection, Personal Data, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, MARKETING, Direct Marketing, Email Marketing, Insolvency, Distress Business, Administration, Administrators, Mergers and Acquisitions, M&A, Corporate Law, Asset Sale, Asset Purchase, Share Purchase, Share Sale, Retail, IP, IPR, Intellectual Property, Intellectual Property Rights, CRM, CRM Database, ICO, Information Commissioner, Information Commissioner's Office, Data Protection Enforcement, Lawful Basis for Processing, ARTICLE 6 UK GDPR, Article 6(1)(f) UK GDPR, Legitimate Interests, Consent, Article 6(1)(a) UK GDPR, Distressed Business
While the sale of marketing lists is generally prohibited, as retail insolvencies increase Handley Gill’s specialist data protection consultants analyse the Information Commissioner’s laissez-faire approach to the purchase and use of the CRM databases of companies in administration and consider the opportunity this offers to administrators and potential purchasers of distressed businesses by reference to the recent case studies of Tesco’s purchase of Paperchase’s assets and the sale of The Body Shop’s assets.
Data Protection, Personal Data, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, MARKETING, Direct Marketing, Email Marketing, Insolvency, Distress Business, Administration, Administrators, Mergers and Acquisitions, M&A, Corporate Law, Asset Sale, Asset Purchase, Share Purchase, Share Sale, Retail, IP, IPR, Intellectual Property, Intellectual Property Rights, CRM, CRM Database, ICO, Information Commissioner, Information Commissioner's Office, Data Protection Enforcement, Lawful Basis for Processing, ARTICLE 6 UK GDPR, Article 6(1)(f) UK GDPR, Legitimate Interests, Consent, Article 6(1)(a) UK GDPR, Distressed Business
![[Regulators] hold back… galvanise](https://images.squarespace-cdn.com/content/v1/5ec11b5f323e5100c9ea427e/1729004889209-7LJDQ46BGOEOWH7LGFMR/2024.10.15+Galvanise+.jpg)
Regulation, Artificial Intelligence, AI, AI Regulation, Digital Markets, Digital Markets Regulation, ICO, Information Commissioner, Information Commissioner's Office, CMA 1990, CMA, Competition & Markets Authority, Labour Party, Sir Keir Starmer, Prime Minister, Department for Science Innovation & Technology, DSIT, Peter Kyle, Secretary of State for Science Innovation & Technology
Regulation, Artificial Intelligence, AI, AI Regulation, Digital Markets, Digital Markets Regulation, ICO, Information Commissioner, Information Commissioner's Office, CMA 1990, CMA, Competition & Markets Authority, Labour Party, Sir Keir Starmer, Prime Minister, Department for Science Innovation & Technology, DSIT, Peter Kyle, Secretary of State for Science Innovation & Technology
Unlike the Chemical Brothers, Prime Minister Keir Starmer called on regulators to hold back in order to galvanise economic growth in his speech to the International Investment Summit on 14 October 2024. We consider the implications for UK regulation of artificial intelligence (AI), digital markets and data protection by the ICO, CMA and Regulatory Innovation Office, and forthcoming legislation.
Regulation, Artificial Intelligence, AI, AI Regulation, Digital Markets, Digital Markets Regulation, ICO, Information Commissioner, Information Commissioner's Office, CMA 1990, CMA, Competition & Markets Authority, Labour Party, Sir Keir Starmer, Prime Minister, Department for Science Innovation & Technology, DSIT, Peter Kyle, Secretary of State for Science Innovation & Technology
Human Rights, Discrimination, Equality Act 2010, Sexual Harassment Risk Assessment, Data Protection, UK GDPR, GDPR, DATA PROTECTION ACT 2018, Article 9 UK GDPR, Article 9(2)(b) UK GDPR, Schedule 1 Part 1 paragraph 1 Data Protection Act 2018, DPA 2018, Appropriate Policy Document, SPECIAL CATEGORY PERSONAL DATA, Special Category Data, Worker Protection (Amendment of Equality Act 2010) Act 2023, Employment Rights Bill, ECHR, European Convention on Human Rights, Article 8 European Convention on Human Rights, Article 14 European Convention on Human Rights, Article 10 European Convention on Human Rights, Bill 011 2024-25, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Privacy Policy, Privacy Notice, Article 5 UK GDPR, Data Protection Principles, Data Minimisation, Lawful Basis for Processing, Accuracy, Duty to Prevent Sexual Harassment
Human Rights, Discrimination, Equality Act 2010, Sexual Harassment Risk Assessment, Data Protection, UK GDPR, GDPR, DATA PROTECTION ACT 2018, Article 9 UK GDPR, Article 9(2)(b) UK GDPR, Schedule 1 Part 1 paragraph 1 Data Protection Act 2018, DPA 2018, Appropriate Policy Document, SPECIAL CATEGORY PERSONAL DATA, Special Category Data, Worker Protection (Amendment of Equality Act 2010) Act 2023, Employment Rights Bill, ECHR, European Convention on Human Rights, Article 8 European Convention on Human Rights, Article 14 European Convention on Human Rights, Article 10 European Convention on Human Rights, Bill 011 2024-25, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Privacy Policy, Privacy Notice, Article 5 UK GDPR, Data Protection Principles, Data Minimisation, Lawful Basis for Processing, Accuracy, Duty to Prevent Sexual Harassment
With employers having a matter of weeks to implement reasonable measures to prevent sexual harassment at work to comply with the requirements of the Worker Protection (Amendment of Equality Act 2010) Act 2023, Handley Gill's consultants identify the steps employers should take to establish a sexual harassment prevention programme and associated data protection compliance measures. As Labour's Employment Rights Bill would expand the scope of the employer's duty to take all reasonable measures and to address threats posed by third parties, employers should consider voluntarily expanding the scope of their programme now.
Human Rights, Discrimination, Equality Act 2010, Sexual Harassment Risk Assessment, Data Protection, UK GDPR, GDPR, DATA PROTECTION ACT 2018, Article 9 UK GDPR, Article 9(2)(b) UK GDPR, Schedule 1 Part 1 paragraph 1 Data Protection Act 2018, DPA 2018, Appropriate Policy Document, SPECIAL CATEGORY PERSONAL DATA, Special Category Data, Worker Protection (Amendment of Equality Act 2010) Act 2023, Employment Rights Bill, ECHR, European Convention on Human Rights, Article 8 European Convention on Human Rights, Article 14 European Convention on Human Rights, Article 10 European Convention on Human Rights, Bill 011 2024-25, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Privacy Policy, Privacy Notice, Article 5 UK GDPR, Data Protection Principles, Data Minimisation, Lawful Basis for Processing, Accuracy, Duty to Prevent Sexual Harassment
Data Protection, Data Protection Practitioners' Conference, DPPC, DPPC24, DPPC 2024, Information Commissioner, Information Commissioner's Office, Artificial Intelligence, AI, SUBJECT ACCESS REQUEST, DATA SUBJECT ACCESS REQUEST, Data Subject Rights, Data Transfer, Restricted Data Transfer, International data transfers, US Data Transfers, Data Breach, Data Breach Response, Incident Response, Supply Chain Risk, Employee Monitoring, Employment Law, Data Sharing, UK GDPR, DATA PROTECTION ACT 2018, DPA 2018
Data Protection, Data Protection Practitioners' Conference, DPPC, DPPC24, DPPC 2024, Information Commissioner, Information Commissioner's Office, Artificial Intelligence, AI, SUBJECT ACCESS REQUEST, DATA SUBJECT ACCESS REQUEST, Data Subject Rights, Data Transfer, Restricted Data Transfer, International data transfers, US Data Transfers, Data Breach, Data Breach Response, Incident Response, Supply Chain Risk, Employee Monitoring, Employment Law, Data Sharing, UK GDPR, DATA PROTECTION ACT 2018, DPA 2018
If you couldn’t make it to the Information Commissioner's Office's (ICO's) Data Protection Practitioners' Conference 2024 (DPPC24), missed a session, were double-booked, couldn’t choose or want to delve deeper into the issues raised by any of the following sessions, Handley Gill's specialist data protection consultants highlight our related content.
Data Protection, Data Protection Practitioners' Conference, DPPC, DPPC24, DPPC 2024, Information Commissioner, Information Commissioner's Office, Artificial Intelligence, AI, SUBJECT ACCESS REQUEST, DATA SUBJECT ACCESS REQUEST, Data Subject Rights, Data Transfer, Restricted Data Transfer, International data transfers, US Data Transfers, Data Breach, Data Breach Response, Incident Response, Supply Chain Risk, Employee Monitoring, Employment Law, Data Sharing, UK GDPR, DATA PROTECTION ACT 2018, DPA 2018
Data Protection, GDPR, EU GDPR, General Data Protection Regulation, Regulation (EU) 2016/679, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, Retained EU Law, Retained EU Law (Revocation and Reform) Act 2023, European Union (Withdrawal) Act 2018, Section 6 European Union (Withdrawal) Act 2018, section 6 Retained EU Law (Revocation and Reform) Act 2023, Assimilated Law, BREXIT, CJEU, Data Controller, Data Minimisation, Supervisory Authority, Health Data, Article 9(1) GDPR, Article 9 GDPR, Article 9 UK GDPR, Article 9(1) UK GDPR, Legitimate Interests, Legitimate Interests Assessment, LIA, Article 6(1)(f) UK GDPR, Article 6(1)(f) GDPR, Commercial Interests, Advertising, MARKETING, Targeted Advertising, Behavioural Advertising, Personalised Advertising, Data Sharing, Necessity, C-446/21, C-621/22, C-21/23, C-200/23, SPECIAL CATEGORY PERSONAL DATA, Special Category Data, Sexual Orientation, Article 9(2)(a) GDPR, Article 9(2)(a) UK GDPR, Article 9(2)(e) GDPR, Article 9(2)(e) UK GDPR, Article 5(1)(c) GDPR, Article 5(1)(c) UK GDPR, Data Retention, C-507/23, Compensation, Damages, Article 82 GDPR, Article 82(1) GDPR, Apology
Data Protection, GDPR, EU GDPR, General Data Protection Regulation, Regulation (EU) 2016/679, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, Retained EU Law, Retained EU Law (Revocation and Reform) Act 2023, European Union (Withdrawal) Act 2018, Section 6 European Union (Withdrawal) Act 2018, section 6 Retained EU Law (Revocation and Reform) Act 2023, Assimilated Law, BREXIT, CJEU, Data Controller, Data Minimisation, Supervisory Authority, Health Data, Article 9(1) GDPR, Article 9 GDPR, Article 9 UK GDPR, Article 9(1) UK GDPR, Legitimate Interests, Legitimate Interests Assessment, LIA, Article 6(1)(f) UK GDPR, Article 6(1)(f) GDPR, Commercial Interests, Advertising, MARKETING, Targeted Advertising, Behavioural Advertising, Personalised Advertising, Data Sharing, Necessity, C-446/21, C-621/22, C-21/23, C-200/23, SPECIAL CATEGORY PERSONAL DATA, Special Category Data, Sexual Orientation, Article 9(2)(a) GDPR, Article 9(2)(a) UK GDPR, Article 9(2)(e) GDPR, Article 9(2)(e) UK GDPR, Article 5(1)(c) GDPR, Article 5(1)(c) UK GDPR, Data Retention, C-507/23, Compensation, Damages, Article 82 GDPR, Article 82(1) GDPR, Apology
Handley Gill's specialist data protection consultants consider the status of CJEU judgments in UK law after the Labour government intervened to prevent section 6 Retained EU Law (Revocation and Reform) Act 2023 from coming into force and amending the European Union (Withdrawal) Act 2018, and consider several CJEU judgments addressing the processing of special category personal data, the interaction between data protection and competition law, the conduct and balancing of legitimate interests assessments, data minimisation and the status of supervisory authority decisions.
Data Protection, GDPR, EU GDPR, General Data Protection Regulation, Regulation (EU) 2016/679, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, Retained EU Law, Retained EU Law (Revocation and Reform) Act 2023, European Union (Withdrawal) Act 2018, Section 6 European Union (Withdrawal) Act 2018, section 6 Retained EU Law (Revocation and Reform) Act 2023, Assimilated Law, BREXIT, CJEU, Data Controller, Data Minimisation, Supervisory Authority, Health Data, Article 9(1) GDPR, Article 9 GDPR, Article 9 UK GDPR, Article 9(1) UK GDPR, Legitimate Interests, Legitimate Interests Assessment, LIA, Article 6(1)(f) UK GDPR, Article 6(1)(f) GDPR, Commercial Interests, Advertising, MARKETING, Targeted Advertising, Behavioural Advertising, Personalised Advertising, Data Sharing, Necessity, C-446/21, C-621/22, C-21/23, C-200/23, SPECIAL CATEGORY PERSONAL DATA, Special Category Data, Sexual Orientation, Article 9(2)(a) GDPR, Article 9(2)(a) UK GDPR, Article 9(2)(e) GDPR, Article 9(2)(e) UK GDPR, Article 5(1)(c) GDPR, Article 5(1)(c) UK GDPR, Data Retention, C-507/23, Compensation, Damages, Article 82 GDPR, Article 82(1) GDPR, Apology
Cyber Security, Cyber Resilience, Information Security, Cyber Month, Cyber Month 2024, #CyberMonth2024, Cyber Security Awareness Month, Cyber Security Awareness Month 2024
Cyber Security, Cyber Resilience, Information Security, Cyber Month, Cyber Month 2024, #CyberMonth2024, Cyber Security Awareness Month, Cyber Security Awareness Month 2024
This Cyber Security Awareness Month, Handley Gill’s specialist consultants identify steps you can take to improve your organisation’s cyber resilience and highlight relevant content and free resources to support you to make Cyber Month 2024 your most secure yet.
Online Safety, Online Harms, eSafety, Online Safety Act 2023, Data Protection, PERSONAL DATA, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Information Commissioner, Information Commissioner's Office, ICO, Children's Code, Age Appropriate Design Code, Social Media, Information Society Services, CHILDREN, Children's Data, Likely to be accessed by children, Trust and Safety, Privacy Settings, Meta, Instagram, Teen Accounts, KOSA, Kids Online Safety Act, Age Assurance, Age Verification, Enforcement, Data Protection Enforcement, Children and Teen’s Online Privacy Protection Act, COPPA, COPPA 2.0, Children's Code Strategy, ICO Children's Code Strategy, Protecting Children's Privacy Online, SMPs, Social Media Platforms, VSPs, Video Sharing Platforms, Platform Liability, Ofcom, Protecting Children from Harms Online, Children's Safety Code
Online Safety, Online Harms, eSafety, Online Safety Act 2023, Data Protection, PERSONAL DATA, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Information Commissioner, Information Commissioner's Office, ICO, Children's Code, Age Appropriate Design Code, Social Media, Information Society Services, CHILDREN, Children's Data, Likely to be accessed by children, Trust and Safety, Privacy Settings, Meta, Instagram, Teen Accounts, KOSA, Kids Online Safety Act, Age Assurance, Age Verification, Enforcement, Data Protection Enforcement, Children and Teen’s Online Privacy Protection Act, COPPA, COPPA 2.0, Children's Code Strategy, ICO Children's Code Strategy, Protecting Children's Privacy Online, SMPs, Social Media Platforms, VSPs, Video Sharing Platforms, Platform Liability, Ofcom, Protecting Children from Harms Online, Children's Safety Code
As Meta announces the introduction of Instagram Teen Accounts for users in the UK, USA, Canada and Australia, Handley Gill’s specialist data protection and online trust and safety consultants consider the global laws and regulations that have spurred this change, and the role of the Information Commissioner’s Children’s Code aka the Age Appropriate Design Code, the UK Online Safety Act 2023, the US’ Kids Online Safety Act (‘KOSA’) and the Children and Teen’s Online Privacy Protection Act (‘COPPA 2.0’).
Online Safety, Online Harms, eSafety, Online Safety Act 2023, Data Protection, PERSONAL DATA, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Information Commissioner, Information Commissioner's Office, ICO, Children's Code, Age Appropriate Design Code, Social Media, Information Society Services, CHILDREN, Children's Data, Likely to be accessed by children, Trust and Safety, Privacy Settings, Meta, Instagram, Teen Accounts, KOSA, Kids Online Safety Act, Age Assurance, Age Verification, Enforcement, Data Protection Enforcement, Children and Teen’s Online Privacy Protection Act, COPPA, COPPA 2.0, Children's Code Strategy, ICO Children's Code Strategy, Protecting Children's Privacy Online, SMPs, Social Media Platforms, VSPs, Video Sharing Platforms, Platform Liability, Ofcom, Protecting Children from Harms Online, Children's Safety Code
Artificial Intelligence, AI, AI Regulation, AI Governance, Council of Europe Framework Convention on Artificial Intelligence and Human Rights Democracy and the Rule of Law, AI Treaty, Labour Party Manifesto 2024, King's Speech 2024, EU AI Act, Human Rights, Equality, Discrimination, Privacy, Data Protection, PERSONAL DATA, Human Rights Act 1998, Equality Act 2010, Data Protection & Digital Information Bill, Digital Information and Smart Data Bill, Democracy, Rule of Law, AI Systems, Online Safety Act 2023, Disinformatoin, Transparency, Liability, Redress, ICO, Information Commissioner, Equality and Human Rights Commission, Digital Regulation Co-operation Forum, DRCF, AI Regulation White Paper, Accuracy, Reliability, AI Safety, AI Security, Risk Management, AI Safety Institute, Disinformation
Artificial Intelligence, AI, AI Regulation, AI Governance, Council of Europe Framework Convention on Artificial Intelligence and Human Rights Democracy and the Rule of Law, AI Treaty, Labour Party Manifesto 2024, King's Speech 2024, EU AI Act, Human Rights, Equality, Discrimination, Privacy, Data Protection, PERSONAL DATA, Human Rights Act 1998, Equality Act 2010, Data Protection & Digital Information Bill, Digital Information and Smart Data Bill, Democracy, Rule of Law, AI Systems, Online Safety Act 2023, Disinformatoin, Transparency, Liability, Redress, ICO, Information Commissioner, Equality and Human Rights Commission, Digital Regulation Co-operation Forum, DRCF, AI Regulation White Paper, Accuracy, Reliability, AI Safety, AI Security, Risk Management, AI Safety Institute, Disinformation
The UK government has today (05 September 2024) joined the US, EU and other countries in signing the Council of Europe’s Framework Convention on Artificial Intelligence and Human Rights, Democracy and the Rule of Law. Handley Gill’s specialist artificial intelligence (AI) consultants consider the implications of this statement of intent for the UK’s current and proposed legislation as announced in the King’s Speech 2024, and what new laws and amendments will be necessary to enable the UK to meet the AI Treaty’s obligations.
Artificial Intelligence, AI, AI Regulation, AI Governance, Council of Europe Framework Convention on Artificial Intelligence and Human Rights Democracy and the Rule of Law, AI Treaty, Labour Party Manifesto 2024, King's Speech 2024, EU AI Act, Human Rights, Equality, Discrimination, Privacy, Data Protection, PERSONAL DATA, Human Rights Act 1998, Equality Act 2010, Data Protection & Digital Information Bill, Digital Information and Smart Data Bill, Democracy, Rule of Law, AI Systems, Online Safety Act 2023, Disinformatoin, Transparency, Liability, Redress, ICO, Information Commissioner, Equality and Human Rights Commission, Digital Regulation Co-operation Forum, DRCF, AI Regulation White Paper, Accuracy, Reliability, AI Safety, AI Security, Risk Management, AI Safety Institute, Disinformation
Data Protection, Personal Data, GDPR, General Data Protection Regulation, Regulation (EU) 2016/679, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, Data Controller, Data Sharing, Data Sharing Agreement, Criminal Conviction & Offence Data, Article 10 UK GDPR, Section 11 Data Protection Act 2018, s.11 DPA 2018, Section 11(2) Data Protection Act 2018, s.11(2) DPA 2018, Section 10 Data Protection Act 2018, S.10 DPA 2018, Section 10(5) Data Protection Act 2018, s.10(5) DPA 2018, Retail, Retail Crime, Theft, Shoplifting, Data Protection Offences, Data protection impact assessment, DPIA, Appropriate Policy Document, Schedule 1 Data Protection Act 2018, Public Domain, Manifestly Made Public, NT1 & NT2 v Google LLC [2018] EWHC 799 (QB), Data Privacy, Misuse of Private Information, Article 8 ECHR, Article 8 European Convention on Human Rights, Rehabilitation of Offenders Act 1974, Retention Schedule, Data Retention, Section 170 Data Protection Act 2018, Prevention or detection of crime, Crime prevention, Crime detection, Human Rights Act 1998, Reputation Management, Defamation, Libel, Slander
Data Protection, Personal Data, GDPR, General Data Protection Regulation, Regulation (EU) 2016/679, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, Data Controller, Data Sharing, Data Sharing Agreement, Criminal Conviction & Offence Data, Article 10 UK GDPR, Section 11 Data Protection Act 2018, s.11 DPA 2018, Section 11(2) Data Protection Act 2018, s.11(2) DPA 2018, Section 10 Data Protection Act 2018, S.10 DPA 2018, Section 10(5) Data Protection Act 2018, s.10(5) DPA 2018, Retail, Retail Crime, Theft, Shoplifting, Data Protection Offences, Data protection impact assessment, DPIA, Appropriate Policy Document, Schedule 1 Data Protection Act 2018, Public Domain, Manifestly Made Public, NT1 & NT2 v Google LLC [2018] EWHC 799 (QB), Data Privacy, Misuse of Private Information, Article 8 ECHR, Article 8 European Convention on Human Rights, Rehabilitation of Offenders Act 1974, Retention Schedule, Data Retention, Section 170 Data Protection Act 2018, Prevention or detection of crime, Crime prevention, Crime detection, Human Rights Act 1998, Reputation Management, Defamation, Libel, Slander
As Iceland boss Richard Walker decried data protection and human rights laws for allegedly preventing him and his staff from sharing information with other retailers in order tackle the scourge of shoplifting, Handley Gill’s specialist data protection consultants consider how these and other laws apply to retailers and shopping centre operators and identify the steps retailers can take to lawfully share personal data for the purposes of preventing or detecting crime.
Data Protection, Personal Data, GDPR, General Data Protection Regulation, Regulation (EU) 2016/679, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, Data Controller, Data Sharing, Data Sharing Agreement, Criminal Conviction & Offence Data, Article 10 UK GDPR, Section 11 Data Protection Act 2018, s.11 DPA 2018, Section 11(2) Data Protection Act 2018, s.11(2) DPA 2018, Section 10 Data Protection Act 2018, S.10 DPA 2018, Section 10(5) Data Protection Act 2018, s.10(5) DPA 2018, Retail, Retail Crime, Theft, Shoplifting, Data Protection Offences, Data protection impact assessment, DPIA, Appropriate Policy Document, Schedule 1 Data Protection Act 2018, Public Domain, Manifestly Made Public, NT1 & NT2 v Google LLC [2018] EWHC 799 (QB), Data Privacy, Misuse of Private Information, Article 8 ECHR, Article 8 European Convention on Human Rights, Rehabilitation of Offenders Act 1974, Retention Schedule, Data Retention, Section 170 Data Protection Act 2018, Prevention or detection of crime, Crime prevention, Crime detection, Human Rights Act 1998, Reputation Management, Defamation, Libel, Slander
Data Protection, PERSONAL DATA, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, ePrivacy Directive, Data Privacy, Cyber Security, Information Security, Cyber Resilience, CONTENT REGULATION, Content Moderation, Online Safety, Online Harms, eSafety, Reputation Management, Libel, Slander, Malicious Falsehood, Misuse of Private Information, Privacy, Article 8 European Convention on Human Rights, Confidential Information, Breach of Confidence, Freedom of Expression, Freedom of Speech, Free speech, Article 10 European Convention on Human Rights, Open Justice, Access to Information, Freedom of Information Act 2000, FOIA, Environmental Information Regulations 2004, EIRs, AI, Artificial Intelligence, Digital Markets, Digital Markets Regulation, Human Rights, Human Rights Act 1998, European Convention on Human Rights, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Information Commissioner, ICO, Monetary Penalty Notice, International data transfers, Restricted International Data Transfers, Media Act 2024, Generative AI & Data Protection, Generative AI, Generative Artificial Intelligence, CMA, Competition & Markets Authority, Children's Code, Institute of Directors, IoD, Responsible Business, FCA, Financial Conduct Authority, Data Protection Commission, Leveson, Press Recognition Panel, Press Regulation, Media Regulation, Data Controller, Data Protection Fee, Online Safety Act 2023, Illegal Harms, Digital Markets Competition & Consumers Act, DMCCA
Data Protection, PERSONAL DATA, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, ePrivacy Directive, Data Privacy, Cyber Security, Information Security, Cyber Resilience, CONTENT REGULATION, Content Moderation, Online Safety, Online Harms, eSafety, Reputation Management, Libel, Slander, Malicious Falsehood, Misuse of Private Information, Privacy, Article 8 European Convention on Human Rights, Confidential Information, Breach of Confidence, Freedom of Expression, Freedom of Speech, Free speech, Article 10 European Convention on Human Rights, Open Justice, Access to Information, Freedom of Information Act 2000, FOIA, Environmental Information Regulations 2004, EIRs, AI, Artificial Intelligence, Digital Markets, Digital Markets Regulation, Human Rights, Human Rights Act 1998, European Convention on Human Rights, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Information Commissioner, ICO, Monetary Penalty Notice, International data transfers, Restricted International Data Transfers, Media Act 2024, Generative AI & Data Protection, Generative AI, Generative Artificial Intelligence, CMA, Competition & Markets Authority, Children's Code, Institute of Directors, IoD, Responsible Business, FCA, Financial Conduct Authority, Data Protection Commission, Leveson, Press Recognition Panel, Press Regulation, Media Regulation, Data Controller, Data Protection Fee, Online Safety Act 2023, Illegal Harms, Digital Markets Competition & Consumers Act, DMCCA
August 2024 edition of Handley Gill’s monthly digital newsletter, On Hand, with all the latest developments in data protection (UK, EU and global), cyber security, AI and machine learning, content regulation, online safety, open justice, access to information, reputation management, digital markets regulation, human rights & ESG. Presented in a readily digestible digital format, those who prefer the traditional newsletter format can export the newsletter to pdf.
Data Protection, PERSONAL DATA, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, ePrivacy Directive, Data Privacy, Cyber Security, Information Security, Cyber Resilience, CONTENT REGULATION, Content Moderation, Online Safety, Online Harms, eSafety, Reputation Management, Libel, Slander, Malicious Falsehood, Misuse of Private Information, Privacy, Article 8 European Convention on Human Rights, Confidential Information, Breach of Confidence, Freedom of Expression, Freedom of Speech, Free speech, Article 10 European Convention on Human Rights, Open Justice, Access to Information, Freedom of Information Act 2000, FOIA, Environmental Information Regulations 2004, EIRs, AI, Artificial Intelligence, Digital Markets, Digital Markets Regulation, Human Rights, Human Rights Act 1998, European Convention on Human Rights, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Information Commissioner, ICO, Monetary Penalty Notice, International data transfers, Restricted International Data Transfers, Media Act 2024, Generative AI & Data Protection, Generative AI, Generative Artificial Intelligence, CMA, Competition & Markets Authority, Children's Code, Institute of Directors, IoD, Responsible Business, FCA, Financial Conduct Authority, Data Protection Commission, Leveson, Press Recognition Panel, Press Regulation, Media Regulation, Data Controller, Data Protection Fee, Online Safety Act 2023, Illegal Harms, Digital Markets Competition & Consumers Act, DMCCA
Data Protection, PERSONAL DATA, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Cyber Security, Information Security, Data Controller, Data Processor, Overseas Travel, Data Transfer, Personal Data Transfer, Personal Data Export, Data Security, Border Control, Schedule 7 Terrorism Act 2000, Section 78(2) Customs and Excise Management Act 1979, Search, Seizure, Password protection, Encryption, Confidential Information, Confidentiality, Privacy, Digital Privacy
Data Protection, PERSONAL DATA, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Cyber Security, Information Security, Data Controller, Data Processor, Overseas Travel, Data Transfer, Personal Data Transfer, Personal Data Export, Data Security, Border Control, Schedule 7 Terrorism Act 2000, Section 78(2) Customs and Excise Management Act 1979, Search, Seizure, Password protection, Encryption, Confidential Information, Confidentiality, Privacy, Digital Privacy
With the summer holiday season in full swing, Handley Gill Limited’s specialist data protection and cyber resilience consultants consider the data protection and information security risks of staff taking data and devices used for business purposes overseas and the practical measures that organisations can take to safeguard data subject to border control powers.
Data Protection, PERSONAL DATA, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Cyber Security, Information Security, Data Controller, Data Processor, Overseas Travel, Data Transfer, Personal Data Transfer, Personal Data Export, Data Security, Border Control, Schedule 7 Terrorism Act 2000, Section 78(2) Customs and Excise Management Act 1979, Search, Seizure, Password protection, Encryption, Confidential Information, Confidentiality, Privacy, Digital Privacy
Directors, Directors' Duties, C Suite, Corporate Governance, ESG, Environmental Social & Corporate Governance, Environmental Social & Governance, Cyber Security, Cyber Resilience, Cyber Crime, Business Resilience, Responsible Business, Companies Act 2006, Chapter 2 Companies Act 2006, s.170(1) Companies Act 2006, Section 170 Companies Act 2006, Institute of Directors, Code of Conduct for Directors, Consultation Response, Supply Chain Risk
Directors, Directors' Duties, C Suite, Corporate Governance, ESG, Environmental Social & Corporate Governance, Environmental Social & Governance, Cyber Security, Cyber Resilience, Cyber Crime, Business Resilience, Responsible Business, Companies Act 2006, Chapter 2 Companies Act 2006, s.170(1) Companies Act 2006, Section 170 Companies Act 2006, Institute of Directors, Code of Conduct for Directors, Consultation Response, Supply Chain Risk
Handley Gill Limited calls on the Institute of Directors to amend its proposed voluntary Code of Conduct for Directors of UK companies to reflect risk management as a core tenet of responsible business and to promote business resilience across supply chains, to help UK plc win the war on cyber crime and safeguard the UK’s people, property and prosperity.
Directors, Directors' Duties, C Suite, Corporate Governance, ESG, Environmental Social & Corporate Governance, Environmental Social & Governance, Cyber Security, Cyber Resilience, Cyber Crime, Business Resilience, Responsible Business, Companies Act 2006, Chapter 2 Companies Act 2006, s.170(1) Companies Act 2006, Section 170 Companies Act 2006, Institute of Directors, Code of Conduct for Directors, Consultation Response, Supply Chain Risk
Data Protection, PERSONAL DATA, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, ePrivacy Directive, Data Privacy, Cyber Security, Information Security, CONTENT REGULATION, Content Moderation, Reputation Management, Libel, Slander, Defamation, Malicious Falsehood, Misuse of Private Information, Privacy, Confidential Information, Breach of Confidence, Article 8 European Convention on Human Rights, Free speech, Freedom of Speech, Freedom of Expression, Article 10 European Convention on Human Rights, Open Justice, Access to Information, Freedom of Information Act 2000, FOIA, Environmental Information Regulations 2004, AI, Artificial Intelligence, Digital Markets Regulation, Human Rights, Human Rights Act 1998, European Convention on Human Rights, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Online Safety, Online Harms, eSafety, EU AI Act, Online Safety Act 2023, Digital Markets Act, Cookies, Contempt, EU Corporate Sustainability Due Diligence Directive, Information Commissioner, ICO, Information Commissioner's Office, Data Subject Rights, Data protection impact assessment, DPIA
Data Protection, PERSONAL DATA, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, ePrivacy Directive, Data Privacy, Cyber Security, Information Security, CONTENT REGULATION, Content Moderation, Reputation Management, Libel, Slander, Defamation, Malicious Falsehood, Misuse of Private Information, Privacy, Confidential Information, Breach of Confidence, Article 8 European Convention on Human Rights, Free speech, Freedom of Speech, Freedom of Expression, Article 10 European Convention on Human Rights, Open Justice, Access to Information, Freedom of Information Act 2000, FOIA, Environmental Information Regulations 2004, AI, Artificial Intelligence, Digital Markets Regulation, Human Rights, Human Rights Act 1998, European Convention on Human Rights, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Online Safety, Online Harms, eSafety, EU AI Act, Online Safety Act 2023, Digital Markets Act, Cookies, Contempt, EU Corporate Sustainability Due Diligence Directive, Information Commissioner, ICO, Information Commissioner's Office, Data Subject Rights, Data protection impact assessment, DPIA
July 2024 edition of Handley Gill’s monthly digital newsletter, On Hand, with all the latest developments in data protection (UK, EU and global), cyber security, AI and machine learning, content regulation, online safety, open justice, access to information, reputation management and free speech, digital markets regulation, human rights & ESG. Presented in a readily digestible digital format, those who prefer the traditional newsletter format can export the newsletter to pdf.
Data Protection, PERSONAL DATA, GDPR, General Data Protection Regulation, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, PRIVACY AND ELECTRONIC COMMUNICATIONS REGULATIONS, PECR, ePrivacy Directive, Data Privacy, Cyber Security, Information Security, CONTENT REGULATION, Content Moderation, Reputation Management, Libel, Slander, Defamation, Malicious Falsehood, Misuse of Private Information, Privacy, Confidential Information, Breach of Confidence, Article 8 European Convention on Human Rights, Free speech, Freedom of Speech, Freedom of Expression, Article 10 European Convention on Human Rights, Open Justice, Access to Information, Freedom of Information Act 2000, FOIA, Environmental Information Regulations 2004, AI, Artificial Intelligence, Digital Markets Regulation, Human Rights, Human Rights Act 1998, European Convention on Human Rights, ESG, Environmental Social & Governance, Environmental Social & Corporate Governance, Online Safety, Online Harms, eSafety, EU AI Act, Online Safety Act 2023, Digital Markets Act, Cookies, Contempt, EU Corporate Sustainability Due Diligence Directive, Information Commissioner, ICO, Information Commissioner's Office, Data Subject Rights, Data protection impact assessment, DPIA
King's Speech, King's Speech 2024, State Opening of Parliament, AI Bill, Audit Reform & Corporate Governance Bill, AI, Artificial Intelligence, AI Regulation, ESG, Environmental Social & Corporate Governance, Online Safety, Online Harms, Children's Wellbeing Bill, CONTENT REGULATION, Advertising, Human Rights, Cyber Security, Hillsborough Law, Duty of Candour, Equality, Discrimination, Equality (Race and Disability) Bill, Strategic Defence Review, Data Protection, Reputation Management, SLAPPs, Strategic Litigation Against Public Participation Bill, Digital Markets, Fraud, Cyber Security and Resilience Bill, Digital Information and Smart Data Bill, Product Safety and Metrology Bill, Crime and Policing Bill, Digital Markets Regulation, Freedom of Information Act 2000, Access to Information
King's Speech, King's Speech 2024, State Opening of Parliament, AI Bill, Audit Reform & Corporate Governance Bill, AI, Artificial Intelligence, AI Regulation, ESG, Environmental Social & Corporate Governance, Online Safety, Online Harms, Children's Wellbeing Bill, CONTENT REGULATION, Advertising, Human Rights, Cyber Security, Hillsborough Law, Duty of Candour, Equality, Discrimination, Equality (Race and Disability) Bill, Strategic Defence Review, Data Protection, Reputation Management, SLAPPs, Strategic Litigation Against Public Participation Bill, Digital Markets, Fraud, Cyber Security and Resilience Bill, Digital Information and Smart Data Bill, Product Safety and Metrology Bill, Crime and Policing Bill, Digital Markets Regulation, Freedom of Information Act 2000, Access to Information
Handley Gill’s consultants consider the implications of the Labour Party’s immediate legislative priorities as set out in the King’s Speech 2024 for data protection, privacy, reputation management, freedom of expression, online safety, cyber security, digital markets regulation, artificial intelligence (AI), content regulation, human rights and ESG, and identify the manifesto commitments that will be delayed.
King's Speech, King's Speech 2024, State Opening of Parliament, AI Bill, Audit Reform & Corporate Governance Bill, AI, Artificial Intelligence, AI Regulation, ESG, Environmental Social & Corporate Governance, Online Safety, Online Harms, Children's Wellbeing Bill, CONTENT REGULATION, Advertising, Human Rights, Cyber Security, Hillsborough Law, Duty of Candour, Equality, Discrimination, Equality (Race and Disability) Bill, Strategic Defence Review, Data Protection, Reputation Management, SLAPPs, Strategic Litigation Against Public Participation Bill, Digital Markets, Fraud, Cyber Security and Resilience Bill, Digital Information and Smart Data Bill, Product Safety and Metrology Bill, Crime and Policing Bill, Digital Markets Regulation, Freedom of Information Act 2000, Access to Information
AI, Artificial Intelligence, AI Regulation, AI Bill, Artificial Intelligence Bill, EU AI Act, Artificial Intelligence (Employment and Regulation) Bill, Workplace AI Risk Assessment, ESG, Equality Act 2010, Discrimination, Bias, AI Bias, Automated Decision Making, Article 22 UK GDPR, Article 22 GDPR, King's Speech 2024, Human Rights Act 1998, Human Rights
AI, Artificial Intelligence, AI Regulation, AI Bill, Artificial Intelligence Bill, EU AI Act, Artificial Intelligence (Employment and Regulation) Bill, Workplace AI Risk Assessment, ESG, Equality Act 2010, Discrimination, Bias, AI Bias, Automated Decision Making, Article 22 UK GDPR, Article 22 GDPR, King's Speech 2024, Human Rights Act 1998, Human Rights
Handley Gill’s specialist consultants consider what a Labour Party AI Bill, announced in the King’s Speech on 17 July 2024, will regulate, considering its manifesto commitments and the TUC’s proposed Artificial Intelligence (Employment and Regulation) Bill, and contrasting with Lord Holmes’ Artificial Intelligence (Regulation) Bill which fell at the dissolution of the last Parliament and the EU’s AI Act.
AI, Artificial Intelligence, AI Regulation, AI Bill, Artificial Intelligence Bill, EU AI Act, Artificial Intelligence (Employment and Regulation) Bill, Workplace AI Risk Assessment, ESG, Equality Act 2010, Discrimination, Bias, AI Bias, Automated Decision Making, Article 22 UK GDPR, Article 22 GDPR, King's Speech 2024, Human Rights Act 1998, Human Rights
Cyber Security, Data Protection, Cyber Security Breaches Survey 2024, Department for Science Innovation and Technology, Information Commissioner, Information Commissioner's Office, Cyber Attack, Data Breach, Data Breaches, Data Breach Statistics, Data Security Incident Trends Report, National Cyber Security Strategy 2022, Directors' Duties, ESG
Cyber Security, Data Protection, Cyber Security Breaches Survey 2024, Department for Science Innovation and Technology, Information Commissioner, Information Commissioner's Office, Cyber Attack, Data Breach, Data Breaches, Data Breach Statistics, Data Security Incident Trends Report, National Cyber Security Strategy 2022, Directors' Duties, ESG
Handley Gill Limited’s specialist data protection and ESG consultants consider the results of the Information Commissioner’s Office’s Cyber Security Incident Trends Report for Q1 2024 and the implications for Sir Keir Starmer’s new Labour government, calling for a greater understanding of and focus on cyber and information risk management by directors and trustees.
Cyber Security, Data Protection, Cyber Security Breaches Survey 2024, Department for Science Innovation and Technology, Information Commissioner, Information Commissioner's Office, Cyber Attack, Data Breach, Data Breaches, Data Breach Statistics, Data Security Incident Trends Report, National Cyber Security Strategy 2022, Directors' Duties, ESG
General Election 2024, Labour Party, Data Protection, Personal Data, UK GDPR, Data Protection Act 2018, Privacy and Electronic Communications (EC Directive) Regulations 2003, PECR, DPA 2018, UK GENERAL DATA PROTECTION REGULATION, Online Safety, Online Harms, eSafety, Online Safety Act 2023, Human Rights, Duty of Candour, Equality Act 2010, AI, Artificial Intelligence, Artificial Intelligence (Employment and Regulation) Bill, National Data Library, Regulatory Innovation Office, Reputation Management, Libel, Slander, Malicious Falsehood, Misuse of Private Information, SLAPPs, Leveson 2, Strategic Litigation Against Public Participation Bill, Strategic Litigation Against Public Participation, Media Act 2024, PLATFORM REGULATION, CONTENT REGULATION, Radicalisation, Cyber Security, Cyber Resilience, Strategic Defence Review, Digital Markets, ESG, Environmental Social & Corporate Governance, Paris Agreement
General Election 2024, Labour Party, Data Protection, Personal Data, UK GDPR, Data Protection Act 2018, Privacy and Electronic Communications (EC Directive) Regulations 2003, PECR, DPA 2018, UK GENERAL DATA PROTECTION REGULATION, Online Safety, Online Harms, eSafety, Online Safety Act 2023, Human Rights, Duty of Candour, Equality Act 2010, AI, Artificial Intelligence, Artificial Intelligence (Employment and Regulation) Bill, National Data Library, Regulatory Innovation Office, Reputation Management, Libel, Slander, Malicious Falsehood, Misuse of Private Information, SLAPPs, Leveson 2, Strategic Litigation Against Public Participation Bill, Strategic Litigation Against Public Participation, Media Act 2024, PLATFORM REGULATION, CONTENT REGULATION, Radicalisation, Cyber Security, Cyber Resilience, Strategic Defence Review, Digital Markets, ESG, Environmental Social & Corporate Governance, Paris Agreement
As the UK’s 58th Prime Minister, Sir Keir Starmer, enters 10 Downing Street following the Labour Party’s landslide victory in the 2024 General Election, Handley Gill’s consultants consider what we can expect for cyber security, data protection, online safety, artificial intelligence (AI), digital markets, content regulation, reputation management, open justice, access to information, human rights and ESG.
General Election 2024, Labour Party, Data Protection, Personal Data, UK GDPR, Data Protection Act 2018, Privacy and Electronic Communications (EC Directive) Regulations 2003, PECR, DPA 2018, UK GENERAL DATA PROTECTION REGULATION, Online Safety, Online Harms, eSafety, Online Safety Act 2023, Human Rights, Duty of Candour, Equality Act 2010, AI, Artificial Intelligence, Artificial Intelligence (Employment and Regulation) Bill, National Data Library, Regulatory Innovation Office, Reputation Management, Libel, Slander, Malicious Falsehood, Misuse of Private Information, SLAPPs, Leveson 2, Strategic Litigation Against Public Participation Bill, Strategic Litigation Against Public Participation, Media Act 2024, PLATFORM REGULATION, CONTENT REGULATION, Radicalisation, Cyber Security, Cyber Resilience, Strategic Defence Review, Digital Markets, ESG, Environmental Social & Corporate Governance, Paris Agreement
Data Protection, PERSONAL DATA, UK GDPR, GDPR, General Data Protection Regulation, UK GENERAL DATA PROTECTION REGULATION, Article 15 UK GDPR, Article 15 GDPR, Data Subject Rights, DATA SUBJECT ACCESS REQUEST, DSAR, C-154/21, BREXIT, European Union (Withdrawal) Act 2018, Section 6 European Union (Withdrawal) Act 2018, S.6 European Union (Withdrawal) Act 2018, Austrian Post, C-154/21 RW v Osterreichische Post AG, Harrison v Cameron & Alasdair Cameron Limited [2024] EWHC 1377 KB, Data Sharing
Data Protection, PERSONAL DATA, UK GDPR, GDPR, General Data Protection Regulation, UK GENERAL DATA PROTECTION REGULATION, Article 15 UK GDPR, Article 15 GDPR, Data Subject Rights, DATA SUBJECT ACCESS REQUEST, DSAR, C-154/21, BREXIT, European Union (Withdrawal) Act 2018, Section 6 European Union (Withdrawal) Act 2018, S.6 European Union (Withdrawal) Act 2018, Austrian Post, C-154/21 RW v Osterreichische Post AG, Harrison v Cameron & Alasdair Cameron Limited [2024] EWHC 1377 KB, Data Sharing
Handley Gill Limited’s specialist consultants unpack the recent High Court decision in Harrison v (1) Cameron & (2) Alasdair Cameron Limited [2024] EWHC 1377 (KB), in which the High Court determined that data controllers responding to data subject access requests (DSARs) are obliged to disclose the specific identities of recipients of personal data, and are not permitted to merely disclose categories of recipient unless exceptions or exemptions apply.
Data Protection, PERSONAL DATA, UK GDPR, GDPR, General Data Protection Regulation, UK GENERAL DATA PROTECTION REGULATION, Article 15 UK GDPR, Article 15 GDPR, Data Subject Rights, DATA SUBJECT ACCESS REQUEST, DSAR, C-154/21, BREXIT, European Union (Withdrawal) Act 2018, Section 6 European Union (Withdrawal) Act 2018, S.6 European Union (Withdrawal) Act 2018, Austrian Post, C-154/21 RW v Osterreichische Post AG, Harrison v Cameron & Alasdair Cameron Limited [2024] EWHC 1377 KB, Data Sharing
General Election 2024, GE2024, Data Protection, UK GDPR, Data Protection Act 2018, Privacy and Electronic Communications Regulations, PECR, Artificial Intelligence, AI, Human Rights, Human Rights Act 1998, ESG, Environment, Environmental, Environmental Social & Governance, Environmental Social & Corporate Governance, Cyber Security, Digital Markets, Digital Services, Social Media, Technology, Technology Regulation, TECH REGULATION, Online Safety, Online Safety Act 2023, Online Harms, Reputation Management, Defamation, Libel, Slander, Misuse of Private Information, SLAPPs, Advertising, Gambling, Access to Information, Freedom of Information Act 2000, Open Justice, Conservative Party, Labour Party, Liberal Democrats, Green Party, CONTENT REGULATION, PLATFORM REGULATION, Data Protection Reform
General Election 2024, GE2024, Data Protection, UK GDPR, Data Protection Act 2018, Privacy and Electronic Communications Regulations, PECR, Artificial Intelligence, AI, Human Rights, Human Rights Act 1998, ESG, Environment, Environmental, Environmental Social & Governance, Environmental Social & Corporate Governance, Cyber Security, Digital Markets, Digital Services, Social Media, Technology, Technology Regulation, TECH REGULATION, Online Safety, Online Safety Act 2023, Online Harms, Reputation Management, Defamation, Libel, Slander, Misuse of Private Information, SLAPPs, Advertising, Gambling, Access to Information, Freedom of Information Act 2000, Open Justice, Conservative Party, Labour Party, Liberal Democrats, Green Party, CONTENT REGULATION, PLATFORM REGULATION, Data Protection Reform
Following the announcement of the snap General Election to take place on 04 July 2024, and the launch of the major parties’ manifesto pledges during London Tech Week 2024, Handley Gill analyses the manifesto pledges of the major UK-wide political parties and their implications for cyber security, data protection, online safety, artificial intelligence (AI), digital markets, content regulation, reputation management, open justice, access to information, human rights and ESG.
General Election 2024, GE2024, Data Protection, UK GDPR, Data Protection Act 2018, Privacy and Electronic Communications Regulations, PECR, Artificial Intelligence, AI, Human Rights, Human Rights Act 1998, ESG, Environment, Environmental, Environmental Social & Governance, Environmental Social & Corporate Governance, Cyber Security, Digital Markets, Digital Services, Social Media, Technology, Technology Regulation, TECH REGULATION, Online Safety, Online Safety Act 2023, Online Harms, Reputation Management, Defamation, Libel, Slander, Misuse of Private Information, SLAPPs, Advertising, Gambling, Access to Information, Freedom of Information Act 2000, Open Justice, Conservative Party, Labour Party, Liberal Democrats, Green Party, CONTENT REGULATION, PLATFORM REGULATION, Data Protection Reform
Handley Gill’s specialist ESG and human rights consultants consider the matters that financial entities should be considering when assessing their third party ICT service providers’ compliance with ethical and social responsibilities under Article 6(1)(f) Commission Delegated Regulation (EU) 2024/1773 and the EU Digital Operational Resilience Act (DORA).