Data

New guidance on how businesses might use codes of conduct and certification schemes to demonstrate their compliance with rules governing international data transfers could be issued by the UK’s data protection authority in a matter of weeks, Out-Law has learned.

https://www.pinsentmasons.com/out-law/news/uk-guide-on-data-transfer-codes-and-certification-anticipated

The UK’s primary competition regulator and data protection authority have signed a new agreement pledging to work more closely together in the way they regulate digital markets in the UK.

https://www.pinsentmasons.com/out-law/news/cma-and-ico-strengthen-ties-on-uk-digital-markets-regulation

Security and data privacy experts warn NHS Digital that its data collection plans could increase risk and cause a public backlash

https://www.computerweekly.com/news/252501494/Privacy-experts-concerned-over-NHS-data-collection-plans

Looking back on 12 tumultuous months, we assess how GDPR has weathered the effects of the Covid-19 pandemic and Brexit, and consider what the coming year may hold for data protection

https://www.computerweekly.com/news/252501332/Industry-reflects-on-three-years-of-GDPR

The vast majority of security leaders questioned for a new report say they are concerned about the possibility of group legal settlements against them following a serious data breach

https://www.computerweekly.com/news/252501338/Threat-of-group-GDPR-legal-action-haunts-CISOs

Data on millions of people who flew with Air India between 2011 and 2021 appears to have been compromised in the recent Sita supply chain attack

https://www.computerweekly.com/news/252501286/Air-India-is-latest-victim-of-Sita-hack

The European Commission should amend its draft decision on UK data protection to ensure EU standards for citizens’ privacy are respected.

https://www.europarl.europa.eu/news/en/press-room/20210517IPR04124/data-protection-meps-urge-the-commission-to-amend-uk-adequacy-decisions?xtor=AD-78-%5BSocial_share_buttons%5D-%5Btwitter%5D-%5Ben%5D-%5Bnews%5D-%5Bpressroom%5D-%5Bjoint-debate-data-protection-adequacy%5D-

The Information Commissioner’s Office (ICO) has fined American Express Services Europe Limited (Amex) £90,000 for sending more than four million marketing emails to customers who did not want to receive them.

https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2021/05/amex-fined-for-sending-four-million-unlawful-emails/

A recent penalty imposed by the Dutch data protection authority should spur UK businesses to urgently review whether they need to appoint an EU-based data protection representative to continue servicing EU-based consumers in compliance with the General Data Protection Regulation (GDPR), an expert has said.

https://www.pinsentmasons.com/out-law/news/warning-for-uk-businesses-after-dutch-gdpr-fine

Leaking of deeply confidential and personal information on patient healthcare marks a new low for the criminal Conti gang

https://www.computerweekly.com/news/252501064/Reports-of-stolen-Irish-health-service-data-being-leaked-online