LEGAL, REGULATORY & COMPLIANCE CONSULTANTS

Handley Gill Limited

Our expert consultants at Handley Gill share their knowledge and advice on emerging data protection, privacy, content regulation, reputation management, cyber security, and information access issues in our blog.

Posts tagged GDPR
Security stimulus

New guidance on good industry practice for directors issued by the Institute of Directors obliges directors and boards to identify and mitigate information and cyber security risks, and to prioritise business resilience, bringing a renewed focus to cyber resilience and supply chain security.    

Read More
Back on the Data Protection Reform Merry-Go-Round

The new Labour government has today (23 October 2024) introduced the Data (Use and Access) Bill in the House of Lords, in the latest attempt to reform the UK’s data protection laws as set out in the UK GDPR, Data Protection Act 2018, Data Protection Act 1998 and Privacy and Electronic Communications Regulations.

Read More
Every little bit of data helps?

While the sale of marketing lists is generally prohibited, as retail insolvencies increase Handley Gill’s specialist data protection consultants analyse the Information Commissioner’s laissez-faire approach to the purchase and use of the CRM databases of companies in administration and consider the opportunity this offers to administrators and potential purchasers of distressed businesses by reference to the recent case studies of Tesco’s purchase of Paperchase’s assets and the sale of The Body Shop’s assets.  

Read More
You Shall EU

Handley Gill's specialist data protection consultants consider the status of CJEU judgments in UK law after the Labour government intervened to prevent section 6 Retained EU Law (Revocation and Reform) Act 2023 from coming into force and amending the European Union (Withdrawal) Act 2018, and consider several CJEU judgments addressing the processing of special category personal data, the interaction between data protection and competition law, the conduct and balancing of legitimate interests assessments, data minimisation and the status of supervisory authority decisions.

Read More
Not so instant compliance

As Meta announces the introduction of Instagram Teen Accounts for users in the UK, USA, Canada and Australia, Handley Gill’s specialist data protection and online trust and safety consultants consider the global laws and regulations that have spurred this change, and the role of the Information Commissioner’s Children’s Code aka the Age Appropriate Design Code, the UK Online Safety Act 2023, the US’ Kids Online Safety Act (‘KOSA’) and the Children and Teen’s Online Privacy Protection Act (‘COPPA 2.0’).

Read More
A problem shared...

As Iceland boss Richard Walker decried data protection and human rights laws for allegedly preventing him and his staff from sharing information with other retailers in order tackle the scourge of shoplifting, Handley Gill’s specialist data protection consultants consider how these and other laws apply to retailers and shopping centre operators and identify the steps retailers can take to lawfully share personal data for the purposes of preventing or detecting crime.

Read More
A paradox of choice

Handley Gill Limited’s specialist consultants unpack the recent High Court decision in Harrison v (1) Cameron & (2) Alasdair Cameron Limited [2024] EWHC 1377 (KB), in which the High Court determined that data controllers responding to data subject access requests (DSARs) are obliged to disclose the specific identities of recipients of personal data, and are not permitted to merely disclose categories of recipient unless exceptions or exemptions apply.

Read More
Security guaranteed?

To coincide with London Tech Week 2024, one of the key themes of which is ‘The Future of Security and Data’, and following the revelation in the DSIT Cyber Security Breaches Survey 2024 that few organisations are conducting supply chain risk assessments, Handley Gill’s specialist consultants have published their Helping Hand checklist on conducting data processor / supply chain information security risk assessments which is informed by NCSC guidance.

Read More
Right my wrongs

As the Information Commissioner’s Office conducts the fourth part of its consultation on generative AI and data protection focusing on data subject rights, ‘engineering individual rights into generative AI models’, Handley Gill’s specialist data protection and artificial intelligence (AI) consultants comment on the issues arising and share their consultation response, as well as highlighting areas not currently addressed in the draft guidance.

Read More
Time to regenerate

The Information Commissioner’s fourth call for evidence in its Generative AI consultation series on ‘engineering individual rights into generative AI models’ suggests that generative AI model developers should regenerate their privacy policies to ensure that they provide individuals with sufficient information to ascertain whether they have been affected by the web scraping of their personal data.

Read More
Scraping together a lawful basis

As the Information Commissioner’s Office consults on the lawful basis for web scraping by AI developers to train generative AI models under the UK GDPR, Handley Gill’s specialist data protection and artificial intelligence (AI) consultants comment on the issues arising and share their consultation response.

Read More
Data Protection Day 2024

This Data Protection Day 2024 - aka Data Privacy Day 2024 - on 28 January, Handley Gill Limited’s specialist data protection consultants identify the ways that both data subjects and data controllers can ‘Take Control of Your Data’.

Read More
Let the cookie crumble…

As the Information Commissioner warns websites they have 30 days to achieve cookie compliance or face regulatory enforcement action, Handley Gill’s specialist data protection consultants advise on how to ensure that the Information Commissioner’s appetite for enforcing cookie compliance under PECR isn’t a recipe for disaster for your organisation. While amending your cookie banner is a bitter pill to swallow, your website won’t be toast and you can avoid having to eat humble pie.  

Read More
King's Speech 2023

Handley Gill’s consultants highlight and consider the content of the King’s Speech at the State Opening of Parliament 2023, and the implications for those with an interest in data protection, privacy, freedom of expression, online safety, cyber security, broadcasting and VOD regulation, digital markets regulation and/or artificial intelligence.

Read More
Barely recognisable?

Handley Gill Limited’s consultants respond to the Information Commissioner’s consultation on the draft Biometric Data Guidance Phase 1. We call for clarity on the circumstances in which the deployment of biometric recognition technologies will be considered to be lawful, particularly in the context of employment and the workplace, confirmation that a Data Protection Impact Assessment (DPIA) will always be required when deploying biometric recognition technologies and inclusion of the benefits and risks of biometric recognition. Finally, we argued for greater clarity about the requirements for further processing of special category biometric data.

Read More