We use cookies to customise content for your subscription and for analytics.
If you continue to browse Lexology, we will assume that you are happy to receive all our cookies. For further information please read our Cookie Policy.

Search results

Order by: most recent most popular relevance



Results:1-10 of 360

Natwest ordered to disclose suspicious activity reports
  • Kingsley Napley
  • United Kingdom
  • November 2 2018

The High Court has held that suspicious activity reports may amount to “personal data” for the purposes of the Data Protection Act 1998 (“DPA 1998”)


Council issued with enforcement notice over subject access request backlog
  • Addleshaw Goddard LLP
  • United Kingdom
  • September 20 2018

The ICO has issued the London Borough of Lewisham (LBL) an enforcement notice under the DPA requiring them to clear a backlog of subject access


ICO survey shows lack of trust and confidence in how organisations handle personal data
  • Addleshaw Goddard LLP
  • United Kingdom
  • September 17 2018

Information Commissioner Elizabeth Denham has issued a reminder to organisations to be transparent with people's personal information, after an ICO


Gambling Law and Regulation Newsletter - August 2018
  • Addisons
  • Australia
  • August 10 2018

The decision of the United States Supreme Court in Murphy v National Collegiate Athletic Association has opened the door for each state of the USA to


Australia’s Notifiable Data Breaches scheme kicks into gear
  • Maddocks
  • Australia
  • August 1 2018

New data from the Office of the Information Commissioner (OAIC) has revealed that a total of 242 data breaches were reported in the second quarter of


GDPR and Insurance: who picks up the tab when things go wrong?
  • 4 New Square Chambers
  • United Kingdom
  • May 8 2018

Notwithstanding assurances from the Information Commissioner that they “prefer the carrot to the stick” the fact remains that the ICO will have the


Professionals, their regulators and personal data breaches: who is in charge of policing the GDPR?
  • 4 New Square Chambers
  • United Kingdom
  • May 3 2018

The spotlight on the consequences for professionals of data or confidentiality breaches will only intensify once the GDPR comes into force...


Could you be fined for failing to train staff in using Excel correctly? A recent UK decision provides a salutary lesson
  • Holding Redlich
  • Australia, United Kingdom
  • April 24 2018

A recent decision of the UK Information Commissioner has highlighted the risks for businesses who share information using Excel spreadsheets. In the


What exactly is a Digital Service Provider in the context of NIS Directive? Could you be a DSP and not know it?
  • Bird & Bird
  • United Kingdom
  • April 24 2018

The NIS Directive requires the adequate prevention of security risks, incident response procedures and notification of incidents having a


The Weekly Privacy Rewind
  • Baker & Hostetler LLP
  • USA
  • April 23 2018

Inogen Inc., which makes portable oxygen devices, reported to the U.S. Securities and Exchange Commission that it experienced a data breach that