Data Protection Reform — Handley Gill's blog — Handley Gill

LEGAL, REGULATORY & COMPLIANCE CONSULTANTS

Posts tagged Data Protection Reform

Back on the Data Protection Reform Merry-Go-Round

Back on the Data Protection Reform Merry-Go-Round

The new Labour government has today (23 October 2024) introduced the Data (Use and Access) Bill in the House of Lords, in the latest attempt to reform the UK’s data protection laws as set out in the UK GDPR, Data Protection Act 2018, Data Protection Act 1998 and Privacy and Electronic Communications Regulations.

Pledge or hedge?

Pledge or hedge?

Following the announcement of the snap General Election to take place on 04 July 2024, and the launch of the major parties’ manifesto pledges during London Tech Week 2024, Handley Gill analyses the manifesto pledges of the major UK-wide political parties and their implications for cyber security, data protection, online safety, artificial intelligence (AI), digital markets, content regulation, reputation management, open justice, access to information, human rights and ESG.

Nicola Cain13 June 2024General Election 2024, GE2024, Data Protection, UK GDPR, Data Protection Act 2018, Privacy and Electronic Communications Regulations, PECR, Artificial Intelligence, AI, Human Rights, Human Rights Act 1998, ESG, Environment, Environmental, Environmental Social & Governance, Environmental Social & Corporate Governance, Cyber Security, Digital Markets, Digital Services, Social Media, Technology, Technology Regulation, TECH REGULATION, Online Safety, Online Safety Act 2023, Online Harms, Reputation Management, Defamation, Libel, Slander, Misuse of Private Information, SLAPPs, Advertising, Gambling, Access to Information, Freedom of Information Act 2000, Open Justice, Conservative Party, Labour Party, Liberal Democrats, Green Party, CONTENT REGULATION, PLATFORM REGULATION, Data Protection ReformComment

Washed-up or fallen down the plughole?

Washed-up or fallen down the plughole?

Following the announcement on 22 May 2024 of the snap General Election to take place on 04 July 2024, Parliament has been prorogued with effect from 24 May 2024 (meaning Parliamentary business is suspended thereafter) and will be dissolved with effect from 30 May 2024. The brief period between the announcement of the election and prorogation is known as wash up, when political parties must negotiate to pass outstanding Bills, or parts of them, or Bills fall. Prorogation also bring an end to the work of the various Parliamentary Committees. Handley Gill’s consultants consider which Bills have been washed up and which have fallen in the context of cyber security, data protection, online safety, artificial intelligence (AI), digital markets, content regulation, reputation management, open justice, access to information, human rights and ESG, as well as the work of Parliamentary Committees which were either rushed out or dropped.

Nicola Cain5 June 2024General Election 2024, GE2024, Data Protection, Personal Data, Data Protection and Digital Information Bill, Media Bill, Media Act 2024, Digital Markets Competition & Consumers Bill, Digital Markets Competition & Consumers Act 2024, Human Rights, Duty of Candour, Joint Committee on Human Rights, Education Committee, Commons Education Committee, Screentime impact on education & wellbeing, Science Innovation & Technology Committee, House of Commons Science Innovation & Technology Committee, Artificial Intelligence, AI, AI Governance, Governance of Artificial Intelligence, Artificial Intelligence (Regulation) Bill, SLAPPs, Strategic Litigation Against Public Participation Bill, Criminal Justice Bill, European Affairs Committee, UK-EU Data Adequacy, Adequacy Decision, Cyber Security, Information Security, Cyber Resilience, Cyber resilience of the UK's critical national infrastructure (CNI), Commons Women & Equalities Committee, Non-consensual intimate image abuse, Revenge porn, Online Safety, Online Harms, DPDI Bill, OFCOM, Competition and Markets Authority, CMA, Strategic Lawsuit Against Public Participation, Strategic Litigation Against Public Participation, Data Protection Reform, UK GDPR, Victims and Prisoners Act 2024, Article 17 UK GDPR, Article 17 GDPR, Right to Erasure, Right to be ForgottenComment

Consigned to a watery grave

Consigned to a watery grave

The snap General Election announced by Prime Minister Rishi Sunak for 04 July 2024, and the consequent curtailment of the Parliamentary session, will mean that there will be insufficient time for the remaining Parliamentary stages of the Data Protection and Digital Information Bill, including the House of Lords Report stage which was due to commence from 10 June, to be undertaken prior to the prorogation and dissolution of Parliament.

Nicola Cain22 May 2024Data Protection, Personal Data, UK GDPR, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, DPA 2018, Privacy and Electronic Communications (EC Directive) Regulations 2003, PECR, Data Protection and Digital Information (No. 2) Bill, Data Protection and Digital Information Bill, DPDI Bill, DPDI (No.2) Bill, DPDI2 Bill, Data Reform Bill, Data Protection ReformComment

King's Speech 2023

King's Speech 2023

Handley Gill’s consultants highlight and consider the content of the King’s Speech at the State Opening of Parliament 2023, and the implications for those with an interest in data protection, privacy, freedom of expression, online safety, cyber security, broadcasting and VOD regulation, digital markets regulation and/or artificial intelligence.

Nicola Cain7 November 2023King's Speech, King's Speech 2023, Kings Speech, Kings Speech 2023, Data Protection, Personal Data, State Opening of Parliament, 2023-24 Parliamentary Session, Data Protection Reform, Data Protection & Digital Information Bill, Data Protection & Digital Information (No.2) Bill, DPDI Bill, DPDI (No.2) Bill, DPDI2 Bill, DPDI(2) Bill, General Data Protection Regulation, GDPR, UK GENERAL DATA PROTECTION REGULATION, UK GDPR, King Charles III, DATA PROTECTION ACT 2018, Brexit, PECR, Privacy & Electronic Communications Regulations, Digital Markets, Competition and Consumers Bill, Digital Markets Competition & Consumers Bill, Digital Markets Regulation, Draft Media Bill, DCMS Committee, Commons Culture Media & Sport Committee, Broadcasting, Public Service Broadcasting, PSBs, Broadcasting Regulation, Ofcom, Video on Demand, Video Streaming Sites, VOD, s.40 Crime and Courts Act 2013, Section 40 Crime and Courts Act 2013, Listed Events, Bill of Rights, Confidential Source, Injunction, Injunctive Relief, SLAPPs, Strategic Lawsuits Against Public Participation, Strategic Lawsuit Against Public Participation, Freedom of Speech, Freedom of Expression, Privacy, Criminal Justice Bill, Investigatory Powers (Amendment) Bill, Online Safety Act 2023, Encryption, Technology, Technology Regulation, TECH REGULATION, Comprehensive and Progressive Agreement for Trans-Pacific Partnership, CPTPP, Artificial Intelligence, AIComment

So you’ve been debanked…

So you’ve been debanked…

Handley Gill’s data protection consultants consider the implications of the data subject access request (DSAR) submitted by Nigel Farage in the context of his de-banking dispute with Coutts & Co and its parent company Natwest, and advise how individuals can make a data subject access request (DSAR).

Nicola Cain30 July 2023Data Protection, Personal Data, GDPR, UK GDPR, General Data Protection Regulation, UK GENERAL DATA PROTECTION REGULATION, DATA PROTECTION ACT 2018, Article 15 GDPR, Article 15 UK GDPR, DATA SUBJECT ACCESS REQUEST, DSAR, SAR, Subject Access Request, Retained EU Law, Data Protection & Digital Information (No.2) Bill, Data Protection & Digital Information Bill, Data Protection Reform, Nigel Farage, Coutts & Co, Natwest, Alison Rose, Information Commissioner, Information Commissioner's Office, Data Regulation, Data enforcement, Financial Conduct Authority, FCA, ICO, AML, Anti-Money Laundering, Know Your Customer, KYC, Banking, Financial Services, Data Processing, SPECIAL CATEGORY PERSONAL DATA, Political Opinions, Religious or Philosophical Beliefs, Article 9 UK GDPR, Article 9 GDPR, Peter Flavel, Politically Exposed Person, PEP, Money Laundering Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017, Money Laundering Regulations, (SI 2017/692), Freedom of Expression, Free Speech, Financial Services and Markets Act 2023, HM Treasury, Freedom of Speech, Discrimination, Protected Characteristics, Religion or Belief, Data Subject Rights, Data Subject Access Request, Retained EU Law (Revocation and Reform) BillComment

Golden Hour Extended

Golden Hour Extended

Handley Gill Limited’s consultants consider the impact of the government’s announced delay to the promised post-Brexit sunset of all retained EU law by the end of 2023 and amendment of the Retained EU Law (Revocation and Reform Bill) on the UK’s data protection legislative framework.

On Hand March 2023

March 2023 edition of Handley Gill’s monthly digital newsletter, with all the latest developments in data protection, cyber security, AI and machine learning, content regulation, access to information and reputation management. Presented in a readily digestible digital format, those who prefer the traditional newsletter format can export the newsletter to pdf.

Nicola Cain21 April 2023On Hand, Data Protection, Personal Data, GDPR, UK GDPR, DPA 2018, Data Protection Act 2018, Data Protection Reform, Data Reform Bill, Data Protection & Digital Information Bill, Data Protection & Digital Information (No.2) Bill, AI, Artificial Intelligence, Machine Learning, Cyber Security, Cyber Resilience, Age Appropriate Design Code, European Data Protection Board, EDPB, Department for Science Innovation & Technology, DSIT, Privacy, Misuse of Private Information, Information Commissioner, ICO, Data Protection Officer, DPO, Data protection Legislation, Information Rights, Access to Information, Freedom of Information Act 2000, FOIA, Human Rights, Content Regulation, Article 8, Article 8 ECHR, Article 8 European Convention on Human Rights, First Tier Tribunal (Information Rights), European Court of Human Rights, Data Breach, Data Breach Reporting, AI Regulation, Reputation Management, Libel, Slander, Defamation, Breach of Confidence, Confidential Information, Open JusticeComment

New and improved?

New and improved?

The Second Reading of, and first chance for Parliament to debate, the government’s second attempt to reform the UK’s data protection legislation, in what it has described as the “improved” and “common-sense-led” Data Protection and Digital Information (No.2) Bill (Bill 265 2022-23) takes place on 17 April 2023. Handley Gill’s specialist data protection consultants consider its impact on the UK’s existing data protection legislation and identify amendments that would improve the Bill.

Nicola Cain17 April 2023Data Protection, Personal Data, GDPR, UK GDPR, Data Protection Act 2018, Data Protection Reform, PECR, DPA 2018, Privacy and Electronic Communications Regulations, Data Reform Bill, Data Protection and Digital Information Bill, Data Protection and Digital Information (No. 2) Bill, Bill 265 2022-23, DPDI Bill, Data: A New Direction, DPDI2 Bill, Bill 143 2022-23, General Data Protection Regulation, UK GENERAL DATA PROTECTION REGULATION, DPDI(2) Bill, DPDI (No.2) Bill, Information Commissioner, Information Commission, Supervisory Authority, Department for Culture Media & Sport, Department for Science Technology & Innovation, Department for Science Innnovation & Technology, Department for Science Innovation & Technology, Brexit, Innovation, Code of Practice, Statutory Code of Practice, DATA SUBJECT ACCESS REQUEST, Data Subject Rights, Vexatious or excessive, Approved person, Data subject complaint, Data controller complaint, Statement of Strategic Priorities, Enforcement, Regulatory Enforcement, Interview notices, First Tier Tribunal (Information Rights), Notice of Intent, Monetary Penalty Notice, Definition of personal data, Data Controller, Data ProcessorComment

SIT down...

SIT down...

The Prime Minister, Rishi Sunak, has announced that a new government department is to be created, the Department for Science, Technology & Innovation, which is likely to take on responsibility from DCMS for online safety and data protection.

GDP-ouR

GDP-ouR

In a speech at the Conservative Party Conference 2022, Michelle Donelan MP, the Secretary of State for Digital, Culture, Media and Sport, announced a bespoke British system of data protection, appearing to indicate a significant revision to the Data Protection and Digital Reform Bill currently undergoing Parliamentary consideration and a potential consolidation of the UK’s data protection law framework.

Revocation and Reform offers no R & R

Revocation and Reform offers no R & R

Without intervention by DCMS, the Retained EU Law (Revocation and Reform) Bill will decimate the UK’s data protection law framework.

DCMS SoS?

DCMS SoS?

Handley Gill considers the impact of the new Prime Minister, Liz Truss, and Secretary of State at the Department for Digital, Culture, Media and Sport, for the Online Safety Bill and the Data Protection and Digital Information Bill.

Keeling calling: Data Protection & Digital Information Bill

Keeling calling: Data Protection & Digital Information Bill

Unofficial Keeling schedules demonstrating the effect that the Data Protection and Digital Information Bill (Bill 143 2022-23) (as introduced) will have on the Data Protection Act 2018 and Privacy and Electronic Communications Regulations (PECR), and a comparison between the GDPR, UK GDPR and the UK GDPR with prospective amendments from the Data Protection and Digital Information Bill.

Nicola Cain29 August 2022Data Protection, Personal Data, GDPR, UK GDPR, General Data Protection Regulation, UK GENERAL DATA PROTECTION REGULATION, Data Protection Act 2018, Privacy and Electronic Communications Regulations, PECR, Data Protection Reform, Data Protection and Digital Information Bill, Bill 143 2022-23, Keeling ScheduleComment

Rishi’s capital gains?

Rishi’s capital gains?

Former Chancellor and Conservative Party leadership candidate Rishi Sunak’s promise that one of his top priorities will be the removal of the burdens of the GDPR need not be interpreted as a significant departure from the proposals for the Data Reform Bill set out in the Government’s response to the Data: A New Direction consultation, but it will rely on the European Commission adopting equality of approach and not seeking to punish the UK for Brexit.

U-turn?

U-turn?

Handley Gill summarises the Government's publication of its response to the ‘Data: A New Direction’ consultation, previewing the content of the forthcoming Data Reform Bill, which was proposed in ‘The Benefits of Brexit’ policy paper and formally announced in the Queen’s Speech 2022.

Nicola Cain22 June 2022Personal Data, UK GDPR, UK General Data Protection Regulation, Data Protection Act 2018, DPA 2018, PECR, Privacy and Electronic Communications Regulations, Data: A New Direction, Data Protection Reform, BREXIT, National Data Strategy, Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data, Article 89 UK GDPR, Recital 159 UK GDPR, Recital 33 UK GDPR, Article 14 UK GDPR, Recital 62 UK GDPR, Disproportionate effort, Article 6(1)(f) UK GDPR, Political processing, Article 6 UK GDPR, Special Category Personal Data, Schedule 1 Data Protection Act 2018, Anonymity, Anonymous Data, Article 4(1) UK GDPR, the Council of Europe’s Convention 108, the Council of Europe Convention 108, Privacy management programme, Data Protection Officer, Article 37 UK GDPR, Data Protection Impact Assessment, DPIA, Article 35 UK GDPR, Article 30 UK GDPR, Records of Processing Activities, Article 36 UK GDPR, Prior Consultation, Article 12(5) UK GDPR, Manifestly Unfounded or Excessive, Article 45(2) UK GDPR, International data transfers, Adequacy Decision, s.17B(1) Data Protection Act 2018, Alternative Transfer Mechanisms, Article 46 UK GDPR, Law enforcement processing, Part 3 Data Protection Act 2018, Part 4 Data Protection Act 2018, Cookie Consent, Regulation 6 Privacy and Electronic Communications Regulations, Regulation 22(2) Privacy and Electronic Communications Regulations, Soft Opt-In, Marketing, Regulatory Enforcement, Information Commissioner, Statutory Duties, Statement of Strategic Priorities, Expert Panel, Technical Reports, Notice of Intent, Final Penalty Notice, AI, Artificial Intelligence, Article 22 UK GDPR, Automated Processing, Voluntary Undertakings, Data Breach Reporting, Article 33 UK GDPR, Article 15 UK GDPR, Data Subject Access Request, Reverse Transfers, Article 49 UK GDPR, Derogations, s.35 Digital Economy Act 2017, Data Sharing, Algorithm Transparency, Schedule 1 Part 2 Data Protection Act 2018, Substantial Public Interest, Biometric Data, Impact Assessments, Legitimate Interests Assessment, Biometrics Commissioner, Smart Data Schemes, Data Intermediaries, Article 46(2)(f) UK GDPR, Certification Regime, Surveillance Camera Commissioner, Schedule 16 paragraph 2(2) Data Protection Act 2018, Data Protection & Digital Information BillComment

Taking a wrong turn? Government pursues data protection reform

Taking a wrong turn? Government pursues data protection reform

The Government has today (10 May 2022) announced in the Queen’s Speech that further to its consultation ‘Data: A New Direction’ it will bring forward legislation in this Parliamentary session to reform the UK’s data protection law (the UK GDPR, Data Protection Act 2018 and Privacy and Electronic Communications Regulations) which has been adopted virtually wholesale from the European General Data Protection Regulation (GDPR).

Nicola Cain10 May 2022Data Protection, Personal Data, GDPR, General Data Protection Regulation, UK GDPR, UK General Data Protection Regulation, Data Protection Act 2018, DPA 2018, Privacy and Electronic Communications Regulations, PECR, Data Protection Reform, Data: A New Direction, Brexit, National Data Strategy, 10 Tech Priorities, Cookies, Data Protection Officer, Information Commissioner, International Data Transfers, Records of Processing Activities, Processing for Research Purposes, AI, Artificial Intelligence, Anonymous Data, Data Intermediaries, Data Stewards, Data Protection Impact Assessments, High Risk Processing, Prior Consultation, Data Breaches, Regulatory Enforcement, Voluntary Undertakings, Cookie Consent, Reverse Transfers, Digital Regulation Co-operation Forum, DRCF, Notice of Intent, Final Penalty Notice, Law Enforcement Processing, Part 3 Data Protection Act 2018, Part 4 Data Protection Act 2018, Automated Processing, Data Protection & Digital Information BillComment