LEGAL, REGULATORY & COMPLIANCE CONSULTANTS

Handley Gill Limited

Our expert consultants at Handley Gill share their knowledge and advice on emerging data protection, privacy, content regulation, reputation management, cyber security, and information access issues in our blog.

Posts tagged General Data Protection Regulation
Peer Review - Part II

As the Data (Use and Access) Bill continues its passage through the House of Lords, Handley Gill’s specialist data protection consultants summarise the second scrutiny session of the House of Lords’ Grand Committee on the Data (Use and Access) Bill on 10 December 2024, when peers began their consideration of the provisions of Part 5 of the Data (Use and Access) Bill on ‘Data protection and privacy’.

Read More
Peer Review - Part I

As the Data (Use and Access) Bill continues its passage through the House of Lords, Handley Gill’s specialist data protection consultants summarise the first session of the House of Lords’ Grand Committee’s scrutiny of the Data (Use and Access) Bill on 03 December 2024.

Read More
Here’s one I prepared earlier

In a comprehensive briefing, the Handley Gill’s specialist data protection consultants analyse the provisions of the Labour government’s Data (Use and Access) Bill (HL Bill 40 2024-25) as introduced in the House of Lords on 23 October 2024, the latest attempt after the Data Protection and Digital Information Bill to reform UK data protection law, as set out in the UK GDPR, Data Protection Act 2018, Data Protection Act 1998 and the Privacy and Electronic Communications Regulations 2003 (PECR).

Read More
Security stimulus

New guidance on good industry practice for directors issued by the Institute of Directors obliges directors and boards to identify and mitigate information and cyber security risks, and to prioritise business resilience, bringing a renewed focus to cyber resilience and supply chain security.    

Read More
Back on the Data Protection Reform Merry-Go-Round

The new Labour government has today (23 October 2024) introduced the Data (Use and Access) Bill in the House of Lords, in the latest attempt to reform the UK’s data protection laws as set out in the UK GDPR, Data Protection Act 2018, Data Protection Act 1998 and Privacy and Electronic Communications Regulations.

Read More
Every little bit of data helps?

While the sale of marketing lists is generally prohibited, as retail insolvencies increase Handley Gill’s specialist data protection consultants analyse the Information Commissioner’s laissez-faire approach to the purchase and use of the CRM databases of companies in administration and consider the opportunity this offers to administrators and potential purchasers of distressed businesses by reference to the recent case studies of Tesco’s purchase of Paperchase’s assets and the sale of The Body Shop’s assets.  

Read More
You Shall EU

Handley Gill's specialist data protection consultants consider the status of CJEU judgments in UK law after the Labour government intervened to prevent section 6 Retained EU Law (Revocation and Reform) Act 2023 from coming into force and amending the European Union (Withdrawal) Act 2018, and consider several CJEU judgments addressing the processing of special category personal data, the interaction between data protection and competition law, the conduct and balancing of legitimate interests assessments, data minimisation and the status of supervisory authority decisions.

Read More
Not so instant compliance

As Meta announces the introduction of Instagram Teen Accounts for users in the UK, USA, Canada and Australia, Handley Gill’s specialist data protection and online trust and safety consultants consider the global laws and regulations that have spurred this change, and the role of the Information Commissioner’s Children’s Code aka the Age Appropriate Design Code, the UK Online Safety Act 2023, the US’ Kids Online Safety Act (‘KOSA’) and the Children and Teen’s Online Privacy Protection Act (‘COPPA 2.0’).

Read More
A problem shared...

As Iceland boss Richard Walker decried data protection and human rights laws for allegedly preventing him and his staff from sharing information with other retailers in order tackle the scourge of shoplifting, Handley Gill’s specialist data protection consultants consider how these and other laws apply to retailers and shopping centre operators and identify the steps retailers can take to lawfully share personal data for the purposes of preventing or detecting crime.

Read More
A paradox of choice

Handley Gill Limited’s specialist consultants unpack the recent High Court decision in Harrison v (1) Cameron & (2) Alasdair Cameron Limited [2024] EWHC 1377 (KB), in which the High Court determined that data controllers responding to data subject access requests (DSARs) are obliged to disclose the specific identities of recipients of personal data, and are not permitted to merely disclose categories of recipient unless exceptions or exemptions apply.

Read More
Security guaranteed?

To coincide with London Tech Week 2024, one of the key themes of which is ‘The Future of Security and Data’, and following the revelation in the DSIT Cyber Security Breaches Survey 2024 that few organisations are conducting supply chain risk assessments, Handley Gill’s specialist consultants have published their Helping Hand checklist on conducting data processor / supply chain information security risk assessments which is informed by NCSC guidance.

Read More
Right my wrongs

As the Information Commissioner’s Office conducts the fourth part of its consultation on generative AI and data protection focusing on data subject rights, ‘engineering individual rights into generative AI models’, Handley Gill’s specialist data protection and artificial intelligence (AI) consultants comment on the issues arising and share their consultation response, as well as highlighting areas not currently addressed in the draft guidance.

Read More
Scraping together a lawful basis

As the Information Commissioner’s Office consults on the lawful basis for web scraping by AI developers to train generative AI models under the UK GDPR, Handley Gill’s specialist data protection and artificial intelligence (AI) consultants comment on the issues arising and share their consultation response.

Read More
Data Protection Day 2024

This Data Protection Day 2024 - aka Data Privacy Day 2024 - on 28 January, Handley Gill Limited’s specialist data protection consultants identify the ways that both data subjects and data controllers can ‘Take Control of Your Data’.

Read More
Let the cookie crumble…

As the Information Commissioner warns websites they have 30 days to achieve cookie compliance or face regulatory enforcement action, Handley Gill’s specialist data protection consultants advise on how to ensure that the Information Commissioner’s appetite for enforcing cookie compliance under PECR isn’t a recipe for disaster for your organisation. While amending your cookie banner is a bitter pill to swallow, your website won’t be toast and you can avoid having to eat humble pie.  

Read More
King's Speech 2023

Handley Gill’s consultants highlight and consider the content of the King’s Speech at the State Opening of Parliament 2023, and the implications for those with an interest in data protection, privacy, freedom of expression, online safety, cyber security, broadcasting and VOD regulation, digital markets regulation and/or artificial intelligence.

Read More