Back Issues - Privacy & Data Protection

All Journals

Inform a Colleague

Back issues of Privacy & Data Protection Journal

This page sets out the subject matter of the main articles in each edition of Privacy & Data Protection journal to date. To search for a specific word/subject on this page, click Ctrl+F on the keyboard.

Back issues of Privacy & Data Protection journal are charged at £90.00 (€115.00) each for a hard copy (including postage and packing) and £115.00 + VAT (€145.00 + VAT) each for the electronic version (PDF format).

To purchase a copy of any journal back issues simply send us an email detailing your order or call our Journal Subscriptions department on: +44 (0)845 226 5723.

January/February 2025
Volume 25, Issue 3

View Front Cover PDF

News Items

ICO's public sector approach to become standard
Fingerprinting not a fair means of tracking users online, says regulator
Ryanair faces further GDPR complaint over face-scanning verification
Brazilian regulator launches calls for views on AI, and acts against TikTok

Articles

Expert comment - Bridget Treacy, Tamarillo Consulting
The devil's in the detail: the LPP exemption to the Right of Access - Olivia Whitcroft, OBEP
Down the Sub-processor rabbit hole - Alastair Edmonson, TLT LLP
The EDPB's Opinion on AI models - what now?! - Hannah Perry, Mason Hayes & Curran
GDPR, AI and HR: a guide to compliance for HR professionals - Ann Bevitt, Cooley LLP
The Prismall case - more bad news for class action claims - Ashley Roughton

December 2024
Volume 25, Issue 2

View Front Cover PDF

News Items

UK government's new Data Use and Access Bill is broad in scope
ICO makes series of recommendations on AI to recruiters
New framework helps organisations assess their data protection compliance
EDPB adopts Opinion on relationship between controllers and their processors/sub-processors

Articles

Expert comment - Bridget Treacy, Tamarillo Consulting
What are the implications of the ICO's first processor fine under the UK GDPR - Duc Tran, Of Counsel and Kamilla Khairul Anuar, Herbert Smith Freehills LLP
Recent CJEU decisions - Emma Erskine-Fox and Flora Ragless-Green, TLT LLP
Back to Basics - DSARs: Navigating the pitfalls and ensuring compliance - Rachael Perry, Bevan Brittan LLP
Ensuring data protection, security and AI ethics in AI Systems - Hamsa Hassan and Dr Hussain Aldawood, NEOM and University of Newcastle Australia and World Economic Forum
Identifiability - DSG v IC considered - Ashley Roughton

October/November 2024
Volume 25, Issue 1

View Front Cover PDF

News Items

Protecting children from online harms remains priority, says ICO
Cookie crackdown continues in earnest
IBM report reveals average cost of a data breach in 2024
UK signs Council of Europe treaty on AI risks

Articles

Expert comment - Bridget Treacy, Tamarillo Consulting
Processing Biometric Data in the Workplace - Tim Hickman, White & Case LLP
The Problem with Data Sharing - Eleonor Duhs, Bates Wells
The Evolving Personal Data Breach Notification Regime in the EU - Adam Finlay, McCann FitzGerald
The European Commission's Second Report on the GDPR - Hannah Perry, Mason Hayes & Curran

September 2024
Volume 24, Issue 8

View Front Cover PDF

News Items

Government unveils vision for cyber security, data protection and AI
ICO acts against platforms to improve children’s privacy practices
EU AI Act now in force and Commission consults on
Code of Practice
ICO reprimands Electoral Commission

Articles

Expert comment - Bridget Treacy, Tamarillo Consulting
UK GDPR compliant school social media use — recommended guidance - Claire Bessant, Northumbria University, School of Law
Access rights: GDPR vs the EU Data Act - Katie Hewson and Sarah O'Brien, Stephenson Harwood LLP
Safeguarding Critical Infrastructure and Digital Services — recent UK and EU developments - Peter Warcup and Nina Lazic, Osborne Clark LLP

July/August 2024
Volume 24, Issue 7

View Front Cover PDF

News Items

Data Protection and Digital Information Bill - future unknown
ICO reviews public sector approach trial
ICO to investigate 23andMe data breach with Canadian regulator
Meta halts AI rollout in UK and Europe

Articles

Expert comment - Bridget Treacy, Tamarillo Consulting
Learning from the (security) mistakes of others - Peter Given, DAC Beachcroft LLP
Emerging approaches to the regulation and enforcement of AI use (a UK perspective) - Gareth Oldale and Emily Holdsworth, TLT LLP
DPIAs - how to avoid 'box ticking' mentality - Rachael Perry, Bevan Brittan LLP
The EU AI Act's Enforcement provisions - Part 3 - Tim Hickman and Aishwarya Jha, White & Case LLP
'Impressions' from inaccurate data - a case of interest - Ashley Roughton

June 2024
Volume 24, Issue 6

View Front Cover PDF

News Items

Organisations need to do more to prevent cyber attacks, says ICO
Generative AI, fourth call for evidence
EDPB Adopts Opinion on facial recognition in airports
ICO outlines Strategic Approach to regulating AI

Articles

Expert comment - Bridget Treacy, Tamarillo Consulting
Pay or OK? 'No way, not today', says the EDPB (well, sort of) - Emma Erskine-Fox, TLT LLP
Legitimate Interests and the Right to Object in the context of AI training models - Hannah Perry, Mason Hayes & Curran
The EU Digital Operational Resilience Act - what is it and what to do now - Peter Given, DAC Beachcroft LLP
The EU AI Act (Part 2) - Tim Hickman and Thomas Harper, White & Case LLP
Health bodies and processing that is in the 'public interest' - finally, a case! - Ashley Roughton

April/May 2024
Volume 24, Issue 5

View Front Cover PDF

News Items

New detailed fining guidance in UK
ICO seeks clarity on 'pay or okay' model
Regulator planning to continue cookie crackdown
EU strikes deal on European Health Data Space

Articles

Expert comment - Bridget Treacy, Tamarillo Consulting
Are you afraid of the dark? Protecting children from the harms of dark patterns - Karishma Brahmbhatt and Steve Wood, Allen & Overy
Online safety and data protection: where the two meet - Matthew MacLachlan, Shoosmiths
CJEU confirms the broad definition of 'personal data' and 'joint controllership' - but how long's a piece of (TC) String? - Georgia Philippou and Emma Erskine-Fox, TLT LLP
The EU AI Act (Part 1) - Tim Hickman and Aishwarya Jha, White & Case LLP

March 2024
Volume 24, Issue 4

View Front Cover PDF

News Items

Lack of staff training at fault in
police body breach
Home Office’s electronic monitoring of
migrants deemed overly intrusive
Updated Opinion on age
assurance
content moderation technologies
and processes

Articles

Is applying for EU and UK Binding Corporate Rules becoming easier? - Nuria Pastor and Anna Rawlinson, Fieldfisher
ICO's second Tech Horizons report: what does it tell us? - Sarah O'Brien, Stephenson Harwood LLP
The ICO's Consultation on Generative AI: plugging the regulatory gap - Andrew Kimble, Jenny Gibbs, Jess Mant and Katie Simmonds, Womble Bond Dickinson
The notion of Main Establishment - the EDPB's new Opinion - Hannah Perry, Mason Hayes and Curran

January/February 2024
Volume 24, Issue 3

View Front Cover PDF

News Items

EU court lowers requirements for imposing fines for breaches
Police breach a result of outdated approach, review finds
EU approves Data Act
G7 publishes code of conduct on AI

Articles

Fundamental changes to the UK GDPR - what they mean in practice - Elearnor Duhs, Bates Wells
What are the implications of Clearview AI's win? - Katie Hewson, Daniel Jones and Nelson Kiu, Stephenson Harwood LLP
Anonymisation through separation: what recent cases teach us about the EU's anonymisation standards - Lore Leitner, Gabe Maldoff and Mickey Lee, Goodwin
The Online Safety Act 2023 - what to do now - Matthew MacLachlan, Shoosmiths

December 2023
Volume 24, Issue 2

View Front Cover PDF

News Items

'Christmas Tree' Data Bill moved forward in UK Parliament
How the ICO will fine - new draft guidance
Clearview AI successfully overturns ICO fine; ICO to appeal
UK holds AI Safety Summit

Articles

The New Guidance on Workplace Monitoring - Ann Bevitt, Cooley LLP
Data Scraping and Data Protection - Key Things to Consider - Duc Tran, Of Counsel and Erin Bibb, Herbert Smith Freehills LLP
The UK-US Data Bridge - advantages and challenges - Sharon Lamb, Pilar Arzuaga and Michaela Novakova, McDermott Will & Emery UK LLP
Higher fines through the back door - Ellis Parry, Data Privacy Compliance Solutions Limited

October/November 2023
Volume 24, Issue 1

View Front Cover PDF

News Items

UK-US Data Bridge approved
Sending bulk communications by email - new guidance
Norway to extend ban on Meta's tracking ads without consent
Poland opens privacy probe of ChatGPT
Share information to protect children, says ICO

Articles

Implementing AI - what you need to know - Stephanie Pritchett and Ben Wootton, Pritchetts Law LLP
Subtle but helpful - changes to the right of access under DPDI 2 - Olivia Whitcroft, OBEP
The ICO's draft Biometric Data Guidance - what it means for you - Emma Erskine-Fox, TLT LLP
Assessing the Assessments - Robert Bond

September 2023
Volume 23, Issue 8

View Front Cover PDF

News Items

Europe adopts adequacy decision on EU-US Framework
PSNI data breach: review launched
European Parliament and Council release agreed text on Data Act
UK government announces proposed ban on financial cold callers
UK escalates inquiry into how to regulate AI

Articles

Harmful design in digital markets — key do’s and don’ts - Bridget Treacy
Cybersecurity Standards and Certifications - what's the right fit? - Nick Soni, CyberStreet
International data transfers — the new ‘normal’- Liz Fitzsimons, Eversheds Sutherland
Damages for actions for breach of privacy or misuse of data - the Yao case - Ashley Roughton

July/August 2023
Volume 23, Issue 7

View Front Cover PDF

News Items

UK government to chart an alternative approach to AI
UK Data Bill developments
Government revokes pieces of data protection regulation
ICO developing guidance on neurotechnology
EU tech groups call for amendment to proposed EU Data Act

Articles

AI at work - current uses and practical guidance - Andrew Kimble, Katie Simmonds and Jenny Gibbs, Womble Bond Dickinson
What does the Meta decision mean for the future of international transfers - Emma Erskine-Fox, TLT
Pseudonymous or anonymous, that is the question - ALi Vaziri, Lewis Silkin LLP
The rise of GDPR private enforcement - trends and developments - Jack Thorne and Pilar Arzuaga, McDermott Will & Emery UK LLP

June 2023
Volume 23, Issue 6

View Front Cover PDF

News Items

John Edwards meets with European colleagues
Meta fined and ordered to stop data transfers to the US
AI Act edges closer
CJEU delivers key ruling on compensation available under EU GDPR
Advocate General gives two key opinions
Representative claim against Google and DeepMind dismissed in UK

Articles

How to achieve transparency in privacy policies (really) - Ellis Parry, Data Privacy Compliance Solutions Limited
8 Hallmarks of effective Data Protection by Design and Default - Robert Maddox and Stephanie Thomas, Debevoise & Plimpton LLP
DPO functions under the spotlight - Gareth Oldale and Alastair Edmondson, TLT LLP
AI - comparing global approaches and 5 compliance keys - Gita Shivarattan, EY

April/May 2023
Volume 23, Issue 5

View Front Cover PDF

News Items

UK government publishes new Data Protection Bill
Immigration exemption incompatible with GDPR
ICO publishes updated guidance on AI and data protection
UK government publishes AI White Paper
CNIL unveils areas of focus for 2023
ICO considers live facial recognition technology

Articles

Health data — regulatory trends and developments - Sharon Lamb, Dr Deniz Tschammler, Daniel F Gottlieb, Lorraine Maisnier-Boche and Pilar Arzuaga, McDermott Will & Emery
Are crypto wallet addresses personal data? - Daniel Owen, Bristows LLP
The UK Data Protection Digital Information Bill and the identifiability test - Sophie Stalla-Bourdillon, Immuta

March 2023
Volume 23, Issue 4

View Front Cover PDF

News Items

Commission proposes new Regulation to fix GDPR
Recommendations for use of cloudbased services by the public sector
DPOs and conflict of interest — new guidance from CJEU
AI Chatbot stopped over GDPR concerns
Supervisory Authorities support fair cookie banners

Articles

Cookie banners: when is consent not consent? - Vicki Bowles, VWV
Role of the DPO — lessons from recent decisions - Ronan Hayes, BCMGlobal
EU/US Privacy framework — is it enough? - Marie C. Daly, Covington
Reigning in recommended content: a data protection lawyer’s take on the DSA - Hannah Perry, Mason Hayes and Curran LLP
Instagram, Facebook and WhatsApp at the EDPB - Alex Jameson, Bird & Bird

January/February 2023
Volume 23, Issue 3

View Front Cover PDF

News Items

European Commission publishes adequacy decision for EU-US transfers
CJEU gives right to be forgotten ruling
Government releases first of its kind Code
New direct marketing guidance and checklists

Articles

Data retention and disposal in non-corporate communication channels — time to bin WhatsApp? - Louisa Williams & Jennifer Cleaver, TLT LLP
The Evergreen programme — myth or reality? - Kate Brimsted, Bryan Cave Leighton Paisner LLP
Watching you, watching me — the ICO’s new guidance on employee monitoring - Ann Bevitt, Cooley LLP
Compensation awards — the Driver case - Ashley Roughton
CNIL clarifies re-use of personal data by data processors - Stella Manga Chesnay, Founder of SMC Compliance, and PDP’s French Correspondent

December 2022
Volume 23, Issue 2

View Front Cover PDF

News Items

EDPB offers clarity on breach notifications and Lead Supervisory Authorities
CJEU makes ruling on data subjects’ withdrawal of consent to third parties

Articles

Evolution of a Profession: the Data Protection Officer (Part 3), Gordon Wade and Isobel Murphy, TikTok (3rd October)
The Online Safety Bill — broader implications, by Matthew MacLachlan, Shoosmiths
The UK government’s approach to regulating AI — a lighter touch, by Duc Tran and Tariq Salameh, Herbert Smith Freehills

October/November 2022
Volume 23, Issue 1

View Front Cover PDF

News Items

Competition bodies may consider data protection breaches in their probes
California signs new children’s Bill into law
HMRC reveals £200m programme to achieve data-protection compliance

Articles

Evolution of a Profession: the Data Protection Officer (Part 2), Gordon Wade and Isobel Murphy, TikTok
Direct Marketing — developments and potential changes, Peter Given and Shimon Simon, EY
Data protection in a developing metaverse, Daniel Owen, Bristows
Monitoring employee health data: the limits, safeguards and lessons from Covid-19, Morgane Conaty, Barrister

September 2022
Volume 22, Issue 8

View Front Cover PDF

News Items

CJEU significantly expands the scope of Article 9 GDPR
China imposes £1bn fine for data violations
Commission urges Slovenia to fulfil its obligations under the GDPR

Articles

Evolution of a Profession: the Data Protection Officer (Part 1), Gordon Wade and Isobel Murphy, TikTok
Navigating M&A — Knowing your Compliance Blindspots, Sara Jameel and Gita Shivarattan, Ernst & Young LLP
Insights from the recent EDPS conference, Marie C. Daly, Covington
Data localisation — the Asia experience, Carolyn Bigg, DLA Piper
Mental Health Apps Part 2: are they in good health?, Lorna Cropper, Alexandra Hague and Minhaal Datoo, Fieldfisher

July/August 2022
Volume 22, Issue 7

View Front Cover PDF

News Items

Opinion urges end to excessive data collection from rape victims
CNIL advises on use of Google Analytics
CJEU rules on compatibility of German law on DPOs with GDPR

Articles

Calculating fines under the GDPR — the EDPB approach, Bridget Treacy
The importance of swift action to mitigate a data breach - Morgane Conaty, Irish Chief State Solicitor’s Office
Complex times ahead for data protection - Oisin Tobin, Mason Hayes & Curran
Mental Health Apps Part 1: are they in good health? - Lorna Cropper, Alexandra Hague and Minhaal Datoo, Fieldfisher

June 2022
Volume 22, Issue 6

View Front Cover PDF

News Items

Latest GDPR and UK GDPR fines
EDPB consults on subliminal privacy eroding practices
Privacy group gives statement on 4 year anniversary of the GDPR

Articles

Conducting Transfer Impact Assessments — practical tips - James Clark and Benji Payne, DLA Piper
Applying Article 23 — exceptions are exceptions, not the rule - Ann Bevitt and Yasmin Roland, Cooley (UK) LLP

April/May 2022
Volume 22, Issue 5

News Items

UK government releases draft Telecoms Security Regulations and Code of Practice
Report critical of support given to hospitality groups
Hamburg regulator welcomes Google’s ‘reject all’ cookie button plan

Articles

To transfer or not to transfer, that is the question - Erik Steiner and Victoria Hordern, Taylor Wessing
Expanding the transfer toolkit: Codes of Conduct for Transfers - Sara Jameel and Peter Given, EY Law
The new Guidelines on access requests — is the bar now too high? - Davinia Brennan, Matheson
‘Data: a new direction’ — but is it the right one? - Kathryn Wynn, Pinsent Masons LLP

March 2022
Volume 22, Issue 4

News Items

New draft of EU Data Act proposes Schrems II style restriction
Supreme Court ruling represents blow for UK media
Use of Google Analytics leads to illegal transfers to the US

Articles

The ICO’s Data Sharing Code — fit for a digital age? - Duc Tran and Sara Lee, Herbert Smith Freehills LLP
Soriano v Forensic news — implications for extra territoriality - James Henderson, Hunton Andrews Kurth
Critical lessons in accountability from Portugal - Monica Almeida, Heward Mills
An analysis of the DMSC proposals – Robert Bond
When employers are not responsible for their employees’ data breaches - Ashley Roughton, Barrister

January/February 2022
Volume 22, Issue 3

News Items

Significant GDPR and UK GDPR fines
UK publishes cyber security strategy
Clearview AI breaks EU data privacy rules, says CNIL

Articles

Taking stock: data litigation after Lloyd v Google - Philip Tansley, Hamish Corner and Matthew MacLachlan, Shoosmiths
CJEU data protection case law in 2022 - Gordon Wade, TikTok
The draft AI Act: the good, the bad and the ugly - Sandy Tsakiridi, HSBC

December 2021
Volume 22, Issue 2

News Items

Latest GDPR fines
UK regulator questions Apple, Google, and 40 other organisations over app age ratings
Draft Cybersecurity Directive adopted

Articles

Handling Subject Access Requests: Then and Now - Olivia Whitcroft, OBEP
Untying the Gordian knot? The EDPB’s new guidelines on territorial scope - Peter Given and Laura Stewart, EY
List of monetary penalties levied by UK Information Commissioner – PDP
Lloyd v Google — its got to actually hurt - Ashley Roughton, Barrister
Single-factor authentication: now a CISA ‘bad practice’ - Ali Vaziri, Lewis Silkin LLP

October/November 2021
Volume 22, Issue 1

News Items

Police illegally processed personal data with facial recognition software
Slovenian SA orders deletion of 88 photos
Swiss SA recognises the new EU SCCs

Articles

Understanding the ICO’s Data Transfer Risk Assessment tool - James Henderson, Hunton Andrews Kurth
Data protection and the growing political dimension - Oisin Tobin, Mason Hayes & Curran
List of monetary penalties levied by UK Information Commissioner – PDP
Privacy as an integral part of ESG criteria — too soon, or just in time? - Monica Simoes de Almeida
What are Trusted Third Parties? (Part 2) - Hamsa Hassan, London Ambulance Service NHS Trust and Sophie Stalla-Bourdillon and Alfred Rossi, Immuta

September 2021
Volume 21, Issue 8

View Front Cover (PDF)

News Items

ICO consults on international data transfer agreement
Pharmacy’s UK GDPR fine reduced on appeal
UK approves first certification schemes
Garante publishes updated guidelines on cookies and other tracking technologies
Scope of data subject access requests widened in Germany
China’s GDPR passed

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Out with the old, in with the new? A first look at the proposed UK approach to IDTs - Victoria Hordern, Bates Wells
UK data protection litigation — a burgeoning market that needs rebalancing - Ashley Hurst & Jamie Halpin, Osbourne Clarke
Codes of Conduct for International Transfers - Kristof Van Quathem & Anna Sophia Oberschelp de Menesesat, Covington & Burling LLP
What are Trusted Third Parties? (Part 1) - Hamsa Hassan, Sophie Stalla-Bourdillon & Alfred Rossi, London Ambulance Service NHS Trust & Immuta

July/August 2021
Volume 21, Issue 7

View Front Cover (PDF)

News Items

UK receives adequacy status, with review after 4 years
EDPB releases final recommendations on supplementary measures
New SCCs adopted
EDPB and EDPS call for ban on facial recognition
New opinion on use of live facial recognition technology in UK
CJEU’s ruling confirms possibility of parallel GDPR investigations

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Managing data protection in digital identities - Emma Erskine-Fox, TLT LLP
Mobile applications and privacy law (Part 2) - Peter Given, Darryl Webb & Ronke Euler-Ajayi, Womble Bond Dickinson (UK) LLP
The new SCCs — a (non exhaustive) cheat sheet - Oisin Tobin, Mason Hayes & Curran
Brazilian law — a comparison with the GDPR - Monica Simoes de Almeida

June 2021
Volume 21, Issue 6

View Front Cover (PDF)

News Items

MEPs: No adequacy for UK before amendments
UK Investigatory Powers regime dealt blow by European Court’s decision
ICO works on bespoke SCCs
WhatsApp to sue Indian government
European coalition makes complaints about Clearview AI
UK Home Office loses immigration data case

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
The EU AI Regulation proposal - Oisin Tobin, Mason Hayes & Curran
Mobile applications and privacy law (Part 1) - Peter Given, Darryl Webb & Ronke Euler-Ajayi, Womble Bond Dickinson LLP
GDPR fines across the EU and their implications - Stephanie Pritchett, Ben Wootton, Partners & Hilary Homer, Pritchetts Law LLP
SCCs for UK organisations - Victoria Hordern, Bates Wells
Facial recognition and privacy: finding the right balance (Part 2) - Konstantinos Kouroupis

April/May 2021
Volume 21, Issue 5

View Front Cover (PDF)

News Items

UK ministers rock the boat on adequacy
New German decision gives guidance on supplementary measures
Government and regulator agree on future procedure for adequacy decisions
CNIL to begin checking cookie policy compliance
Ikea France on trial for snooping on staff and customers
German legal dispute over Facebook data use sent to European Court of Justice

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Appointing an EU/EEA Representative — key considerations - Patrick Wheeler & Rhiannon Thompson, Collyer Bristow LLP
DPIAs — in light of everything - Olivia Whitcroft, OBEP
The Twitter fine — an analysis - Oisin Tobin, Mason Hayes & Curran
Facial recognition and privacy: finding the right balance (Part 1) - Dr Konstantinos Kouroupis, Frederick University
Book Review: Data Protection Strategy: Implementing Data Protection Compliance (Third Edition) - Stephanie Pritchett & Hilary Homer, Pritchetts Law LLP

March 2021
Volume 21, Issue 4

View Front Cover (PDF)

News Items

New EU guidelines on breach notification
UK close to securing adequacy
e-Privacy Regulation progresses to next stage
Amendments to Singapore’s Personal Data Protection Act now in force
EDPB answers key questions on health research data

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
DSARs: are the courts flexing their muscles
(again)? - Ann Bevitt, Cooley (UK) LLP
The technical fix for international data transfers - a word of caution - Sophie Stalla-Bourdillon & Alfred Rossi, University of Southampton & Immuta
Delving into the ICO’s AI guidance - Emma Erskine-Fox, TLT LLP
Consent in the UK healthcare sector - overcoming the challenges - Hamsa Hassan, NHS

January/February 2021
Volume 21, Issue 3

View Front Cover (PDF)

News Items

Experts recommend cautious optimism with UK adequacy
New Data Sharing Code published in UK
ICO issues new guidance for employers using algorithms for recruitment decisions
EU releases new draft of the ePrivacy Regulation
Trade Agreement - direct marketing and other affects

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Adapting to the UK GDPR - 8 pressing concerns - Patrick Wheeler & Mette Marie Kennedy, Collyer Bristow LLP
5 data protection and privacy predictions for 2021 - Gareth Oldale, TLT LLP
Graduating from the Sandbox - a look at the first four exit reports - Ali Vaziri, Lewis Silkin LLP
The proposed Digital Services Act Package - what you need to know - Professor Dr. Patrick Van Eecke & Enrique Gallego Capdevila, Cooley LLP

December 2020
Volume 21, Issue 2

View Front Cover (PDF)

News Items

Key considerations as Brexit transitional period comes to close
EDPB issues Schrems guidance and Commission adopts SCCs
Apple faces privacy case in Europe over iPhone tracking ID
Cancer mission Board Member urges MEPs to review EU data protection rules
Dutch regulator has its first GDPR fine overturned

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
SCCs and Supplementary Measures - a bumpy road ahead for international data transfers - Victoria Hordern & Michael Charalambous, Bates Wells
All I want for Christmas is not to be sued (by you and you and you…)! - Kate Brimsted, Bryan Cave Leighton Paisner
Outsourcing using processors - the new EDPB guidelines - Peter Given & Ronke Euler-Ajayi, Womble Bond Dickinson (UK) LLP
Clarifying the right of access - Olivia Whitcroft, OBEP

October/November 2020
Volume 21, Issue 1

View Front Cover (PDF)

News Items

ICO consults on monetary penalty decision-making
CJEU rules that bulk data retention schemes are illegal
ICO’s new guidance on DSARs may move needle in favour of employers
EU Parliament wants tighter rules on behavioural ads
CNIL makes targeted advertising a priority

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
The Age Appropriate Design Code - Rosemary Jay, Hunton Andrews Kurth
Data processing addenda - Oisin Tobin, Mason Hayes & Curran
Learning from others’ mistakes - two common security failings in five data breaches - Ali Vaziri & Tamsin Hoque, Lewis Silkin LLP

September 2020
Volume 20, Issue 8

View Front Cover (PDF)

News Items

CJEU invalidates Shield; Germany issues specific guidance
Police facial recognition use unlawful - landmark ruling in UK
NOYB file 101 complaints to EU Supervisory Authorities
Latest GDPR fines
Age Appropriate Design Code now in force in UK

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Bidding farewell to Privacy Shield as SCCs live to tell the tale - Emma Erskine-Fox, TLT LLP
EDPB’s guidance on consent - what’s new? - Alex Jameson, Bates Wells
Data protection contracts - what tends to be missing and what to do about it - Rocio de la Cruz, Gowling WLG
Facial recognition - South Wales Police re-considered - Ashley Roughton, Barrister

July/August 2020
Volume 20, Issue 7

View Front Cover (PDF)

News Items

GDPR receives its first assessment
UK regulator addresses perplexing privacy questions for hospitality sector
Dutch regulator issues record fine for violating data subject rights
Australia and UK open probe into Clearview
Record-breaking fine imposed in Hungary

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Top ten data protection considerations when outsourcing - Molly Waiting, Bates Wells
AI ethics in the post-GDPR world: Part 2 - Sandy Tsakiridi, HSBC
Consent on the facts - not always an easy question - Ashley Roughton, Barrister
Libra versus Central Bank Digital Currency - the stablecoin conundrum - Tripti Dhar, Reina Legal

June 2020
Volume 20, Issue 6

View Front Cover (PDF)

News Items

GDPR anniversary marked by vitriol over top regulator’s slow pace
Belgian ruling prompts serious concerns about dual role DPOs
France approves contact-tracing app
Lawsuit seeking billions in damages filed against EasyJet
Grandmother ordered to delete pictures of her grandkids on social media

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Legal responsibilities of processors - a guide - Olivia Whitcroft, OBEP
Belgian SA challenges the independence of DPOs - Bridget Treacy & Jonathan Wright, Hunton Andrews Kurth
Working from home - dos and don’ts for controllers - Robert Bond, Bristows
AI ethics in the post-GDPR world: Part 1 - Sandy Tsakiridi, HSBC

April/May 2020
Volume 20, Issue 5

View Front Cover (PDF)

News Items

Tracing apps take centre stage for EU Supervisory Authorities
ICO adjusts regulatory approach during coronavirus economic downturn
Former model ordered to pay £25,000 in privacy related damages
Supreme Court rules on the legality of sharing personal data with the US
Cabinet Office at risk of further data breaches, review concludes

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Understanding the ICO’s Age Appropriate Design Code - Emma Erskine-Fox, TLT LLP
A guide to data processing during a pandemic - Olivia Whitcroft, OBEP
Data protection and adtech in Europe: where next? - Julia Kaufmann & Joanna de Fonseka, Baker & McKenzie
The Supreme Court’s judgment in Morrisons - a comment - Ashley Roughton, Barrister

March 2020
Volume 20, Issue 4

View Front Cover (PDF)

News Items

EU plans for new rules on AI ‘could be clearer’, say experts
UK government sets out post-Brexit data protection intentions
Chinese authorities clamp down with regulation following coronavirus related breaches
Airline fined £500,000 in UK
EDPS issues Opinion on EU - UK future data protection relationship

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Special category data - exploring the new ICO guidance - James Clark & Jo Nevin, DLA Piper UK LLP
EDPB’s guidelines on territorial scope - clarifications and uncertainties - Peter Given, Womble Bond Dickinson (UK) LLP
UK enforcement: Top five focus areas - Ann Bevitt & Amy Collins, Cooley (UK) LLP
Schrems II - why the AG’s Opinion might not all be good news - Oisin Tobin, Mason Hayes & Curran
Data protection in Japan - Part 2 - Christopher Wells & Narumi Ito, Morgan, Lewis & Bockius Tokyo

January/February 2020
Volume 20, Issue 3

View Front Cover (PDF)

News Items

London pharmacy fined after ‘careless’ storage of patient data
Advocate General gives Standard Contractual Clauses a boost
SCCs for contracts between controllers and processors published
EDPS issues opinion on scientific research
Europe celebrates 14th Data Protection Day

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Blockchain and the GDPR - friends or foes? - Sandy Tsakiridi, HSBC
The ICO’s new Direct Marketing Code - Nick Graham & Monika Sobiecki, Dentons
ISO Standards - a guide for privacy professionals - William Stallings, Author
Data protection in Japan - Christopher Wells & Narumi Ito, Morgan, Lewis & Bockius Tokyo

December 2019
Volume 20, Issue 2

View Front Cover (PDF)

News Items

e-Privacy: Council to begin again after own Committee rejects draft
EDPB publishes final version of Guidelines on Territorial Scope
First multi-million GDPR fine in Germany
European Parliament under investigation over election data sharing
Twitter launches a Privacy Center to centralise data protection efforts

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Accountability - moving from theory to practice - Bridget Treacy, Hunton Andrews Kurth
How ‘intelligent’ is Artificial Intelligence? - Vivienne Artz, Refinitiv
BYOD and social media in the workplace - managing the risks - Robert Bond, Bristows
Brexit - if it ain’t broke, why break it? - Kathryn Wynn, Pinsent Masons
GDPR - 3 areas of ambiguity - Oisín Tobin, Mason Hayes & Curran

October/ November 2019
Volume 20, Issue 1

View Front Cover (PDF)

News Items

CJEU rules on cookie consent
Floodgates on data breach class action suits may have just been opened in UK
Facebook agrees to pay Cambridge Analytica fine to UK
Third Privacy Shield Report released
Mastercard institutes criteria for data privacy

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Data Scraping - what are the privacy implications? - Fiona Campbell, Fieldfisher
Data ethics - why should you care? - Karishma Brahmbhatt, Allen & Overy
7 tips to increase your impact, influence and leadership - Nick Williams, Author, Trainer and Speaker
Facial recognition tested by the UK courts - Ashley Roughton, Barrister
Damages in data protection cases - have the floodgates opened? - Ashley Roughton, Barrister

September 2019
Volume 19, Issue 8

View Front Cover (PDF)

News Items

ICO amends guidance on SAR response times
Dutch data regulator says despite changes, Windows 10 still breaches user privacy
Sweden issues first GDPR fine
UK regulator launches investigation into facial recognition
Facebook’s global digital currency plan is problematic on privacy, say regulators

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Contracting under the GDPR: Five not-so-easy pieces - James Clark, DLA Piper
Joint controller relationships - more prevalent than previously thought - Duc Tran & Laura Adde, Herbert Smith Freehills LLP
Why you may not be processing Special Category personal data lawfully in the UK - Rocio de la Cruz, Gowling WLG
Confused by EU cookie rules? The ICO and CNIL are here to help (sort of) - John O’Brien, Reed Smith LLP

July/August 2019
Volume 19, Issue 7

View Front Cover (PDF)

News Items

UK’s first GDPR fines surprise many
The CJEU’s hearing on Schrems II signals potential chaos ahead
Facebook fined $5 billion, critics say it’s a ‘early Christmas present’
Commission weighs in on Artificial Intelligence as debate continues in UK
The first GDPR fines in Romania

Articles

Expert comment - Bridget Treacy, Hunton Andrews Kurth
Making sense of marketing in a digital world - focus on cookies - Liz Fitzsimons, Eversheds Sutherland (International) LLP
Data Subject Access Requests - three illuminating UK cases - Kate Brimsted & Tom Evans, Bryan Cave Leighton Paisner
Taking action: enforcement of data protection by design and by default - Peter Given & Amy Eames, Womble Bond Dickinson (UK) LLP
Just a processor? The fan pages and Fashion ID cases - Ann Bevitt & Amy Collins, Cooley (UK) LLP

June 2019
Volume 19, Issue 6

View Front Cover (PDF)

News Items

As adtech complaints mount, a vision for enforcement is lacking
CNIL takes proactive steps to address ePrivacy Regulation delay
EU-US Privacy Shield complaint to be heard by Europe’s top court in July
Singapore’s regulator shifts more accountability to businesses
ICO accepting enquires regarding certification schemes

Articles

Tricky transparency requirements and how to overcome them - Krysia Oastler, PwC
Probing the rules on automated decision making - Duc Tran, Herbert Smith Freehills LLP
Adtech and transparency: an area of focus for regulators - Joanne Vengadesan & Michael Ridge, Penningtons Manches LLP
Contractual necessity for online services - clarity at last? - Oisín Tobin, Mason Hayes & Curran
Rudd v Bridle and another - pleading guidance in data protection cases - Ashley Roughton, Northwall Cyber LLP

April/May 2019
Volume 19, Issue 5

View Front Cover (PDF)

News Items

Polish case sets standard for publicising privacy notes
Online platforms to face new duty of care in the UK
Regulators are working on a ‘matrix’ for calculating fines
Bank embraces data protection audit in Sweden
EDPS to investigate EU institutions’ Microsoft cloud deals for GDPR compliance
German court rules that protection of whistle-blower confidentiality does not override subject access

Articles

‘Sufficient guarantees’ and technical due diligence when appointing processors - Manish Soni, Herbert Smith Freehills LLP
Data protection by design and data analytics: can we have both? - Sophie Stalla-Bourdillon, Immuta
Cookie consent revisited - Oisin Tobin, Mason Hayes & Curran
The troublesome position of the Polish Supervisory Authority regarding BCRs - Damian Karwala, CMS Poland
Post GDPR enforcement in Germany - a sneak peek - Benjamin Beck & Ulrich Worm, Mayer Brown

March 2019
Volume 19, Issue 4

View Front Cover (PDF)

News Items

EDPS, EDPB and various SAs all talk Brexit
EU regulators consult on codes of conduct and monitoring bodies
Committee describes Facebook as ‘digital gangster’ of the online world
Code sets benchmarks for AI use by UK health bodies
Thailand’s new data law approved
Singapore to introduce data sharing requirement

Articles

Anonymising personal data: where do we stand now? - Sophie Stalla-Bourdillon, Immuta
CNIL’s fine to Google - lessons to be learned - Rob Corbet, Arthur Cox
Expanding the GDPR’s journalism exemption - is all the world a stage? - Hugh McCarthy, Arthur Cox
Cooper: a basis for processing - Ashley Roughton, Northwall Cyber LLP

January/February 2019
Volume 19, Issue 3

View Front Cover (PDF)

News Items

Government’s Brexit legislation focuses minds on preparations
Google becomes first tech to receive GDP fine (and it’s large)
Japan attains adequacy
Campaigners given go ahead to challenge immigration exemption in UK
EU advisor’s advice limits scope of ‘right to be forgotten’
Dutch DPA investigates the data processing agreements of 30 organisations

Articles

Brexit - the guidance so far. Keep calm and carry on? - John O’Brien, Reed Smith
Consent versus legitimate interest: Part 2 - Mark Watts, Bristows
How to use dashboard cameras in a compliant way - Anna Rak-Kozerska & Lore Leitner, Wilson Sonsini Goodrich & Rosati
Practical strategies for dealing with Data Subject Requests - James Clark, DLA Piper
The GDPR right to be forgotten and employee images - David Whincup, Squire Patton Boggs

December 2018
Volume 19, Issue 2

View Front Cover (PDF)

News Items

UK government publishes plans for ‘no deal’ Brexit
Irish regulator opens fresh GDPR investigation into Facebook
Director liability for nuisance calls introduced in UK
EU e-Privacy reforms hit stalemate
Marriott data breach a Chinese effort?
Airbnb ordered to disclose data on hosts in Munich

Articles

Data protection by Design and by Default: from theory to practice - Bridget Treacy, Hunton Andrews Kurth LLP
Consent vs legitimate interest: Part 1 - Mark Watts, Bristows
Reconciling innovation and regulation: mission impossible? - Fiona Maclean & Olga Phillips, Latham & Watkins
Dealing with Data Subject Requests - practical tips - Lore Leitner, Wilson Sonsini Goodrich & Rosati

October/November 2018
Volume 19, Issue 1

View Front Cover (PDF)

News Items

Commissioner: “I’m at a crossroads now”
“Look beyond passwords”, says ICO
ICO prosecution results in a first-ever prison sentence
First GDPR fine issued, and it’s pretty modest
CNIL publishes useful assessment on blockchain
ICO prosecution results in a first-ever prison sentence

Articles

Making sense of Data Protection by Design and by Default - Bridget Treacy, Hunton Andrews Kurth LLP
Brexit: key impacts on data protection - James Clark & Alexandra Greaves, DLA Piper UK LLP
How a company can survive a personal data breach - John O’ Brien, Reed Smith LLP
Spot the difference: the change in the definition of ‘personal data’ in the UK - Krysia Oastler, PwC

September 2018
Volume 18, Issue 8

View Front Cover (PDF)

News Items

New guidance on international data transfers
Campaigners launch legal challenge against UK Data Protection Act
UK regulator calls for views on creating a regulatory “sandbox”
Google says CNIL is ‘out on a limb’ with right to be forgotten case
Internet Association calls for national data protection rules in US
British Airways data breach hackers identified

Articles

What has the GDPR (ever) done for Subject Access Requests? - Kate Brimstead & Tom Evans, Bryan Cave Leighton Paisner
When to report your data breach - Rob Corbet, Arthur Cox
UK data subjects’ rights - Part 1 - Estelle Dehon, Cornerstone Barristers
While your back was turned… the Asia data protection outlook in 2018 - Carolyn Bigg, DLA Piper

July/August 2018
Volume 18, Issue 7

View Front Cover (PDF)

News Items

Eight months until Brexit and still no adequacy deal
UK regulator issues interim report into political campaigns’ use of data analytics
European Union and Japan agree on adequacy
Singapore pilots data protection scheme as country suffers large-scale hack
Spanish government approves new decree-law on data protection
Dixons Carphone says data breach affected 10 million

Articles

GDPR certifications — what you need to know - Krysia Oastler, PwC
California’s Consumer Privacy Act and the GDPR - where do they overlap? - James Clark & Jim Halpert, DLA Piper
ICO’s Regulatory Action Strategy - what you need to know - Emily Carter, Kingsley Napley
A practical guide to conducting Data Protection Impact Assessments - Sandy Tsakiridi, Fieldfisher

June 2018
Volume 18, Issue 6

View Front Cover (PDF)

News Items

EDPB gets down to business
Directors could be made personally liable for nuisance calls in UK
Barnier: ‘You’re either in or you’re out’
e-Privacy Regulation update
National data strategy to be developed in the UK
Facial recognition technology is ‘dangerously inaccurate’

Articles

iConsent and pesky emails - why ‘do nothing’ is the sanest approach - Ashley Roughton, IP Chambers
The future of international data transfers - Eduardo Ustaran, Hogan Lovells
How much control makes a controller? - Roisín Cregan & Sekou Taylor, Macfarlanes
Ireland’s Data Protection Act 2018 - Rob Corbet, Arthur Cox

April/May 2018
Volume 18, Issue 5

View Front Cover (PDF)

News Items

Regulator releases raft of GDPR guidance
Article 29 working party issues various GDPR guidance
Government given six months to rewrite Snooper’s Charter
Facebook fails its attempt to stall progress of Model Clauses case
Sharing of school pupils’ data put on hold
UK businessman wins takedown request case

Articles

GDPR series: Certifications, Seals and Marks - Bridget Treacy, Hunton Andrews Kurth
GDPR series: Automated decisions - what controllers need to know - Krysia Oastler, PwC
What public bodies should take from Procurement Policy Note 03/17 - Christopher Knight, 11KBW
GDPR series - Challenges in informing individuals in health setting - Adam Tuckett, SCW CSU
GDPR series: Personal liability for DPOs - Rob Corbet, Arthur Cox

March 2018
Volume 18, Issue 4

View Front Cover (PDF)

News Items

Welcome clarifications in breach notification guidance
UK PM’s ‘ambitious’ data protection plan not unreasonable, say experts
France’s draft data protection law close to being finalised
UK regulator publishes introduction to Data Protection Bill
Regulator publishes first ever technology strategy
Elizabeth Denham tells marketers they need consent for electronic marketing

Articles

GDPR series: Outsourcing contracts - all changed, changed utterly? - John O’Brien, Reed Smith LLP
GDPR series: new obligations on data processors - Laura Dietschy, Cooley (UK) LLP
GDPR series: the Right to be Forgotten - Hugh McCarthy, Arthur Cox
Ireland’s take on the GDPR - Rob Corbet, Arthur Cox

January/February 2018
Volume 18, Issue 3

View Front Cover (PDF)

News Items

Guidance takes strict interpretation of GDPR consent
Latest Bill amendments — legitimate interests; protection for researchers
If you knew about security flaws before GDPR, they will be enforced under the new rules’ says ICO
New guidance on children’s data
ICO issues joint largest ever fine against mobile phone retailer
ICO updates GDPR guidance

Articles

GDPR series: How to engage third party suppliers in a GDPR compliant way - Krysia Oastler, PwC
GDPR series: How to legitimise your profiling activities - Fedelma Good, Samantha Sayers & Olivia Wint, PwC
GDPR series: transparency - Manish Soni, Macfarlanes LLP
Handling SARs now and after May (a UK perspective) - Ann Bevitt & Nihara McCormack, Cooley LLP
The proposed changes to the UK Investigatory Powers Act - Graham Smith, Bird & Bird

December 2017
Volume 18, Issue 2

View Front Cover (PDF)

News Items

EU DPAs to go after Uber
Shield strife
UK government seeks views on updates to Communications regime
European Commission intervenes in US dispute with Microsoft over access to data stored in Ireland
UK regulator issues guidance on security and breach reporting for eID and trust services
Guide to law enforcement provisions of Data Protection Bill published
UK supermarket found responsible for actions of rogue employee
Google faces landmark mass legal action in UK

Articles

Working Party threatens to take legal action over Privacy Shield
E-privacy in Europe - changes afoot - Mark Webber & Richard Lawne, Fieldfisher LLP
IDTs - transparency, adequacy and GDPR derogations - Hugh McCarthy, Arthur Cox
Group actions for data breaches - the case of Morrisons supermarket - Timothy Pitt-Payne QC, 11KBW
GDPR series: International data transfers - a high level review - Kirill Albrecht & Karen Lee Lust, Reed Smith LLP

December 2017
Volume 18, Issue 2

View Front Cover (PDF)

News Items

EU DPAs to go after Uber
Shield strife
UK government seeks views on updates to Communications regime
European Commission intervenes in US dispute with Microsoft over access to data stored in Ireland
UK regulator issues guidance on security and breach reporting for eID and trust services
Guide to law enforcement provisions of Data Protection Bill published
UK supermarket found responsible for actions of rogue employee
Google faces landmark mass legal action in UK

Articles

Working Party threatens to take legal action over Privacy Shield
E-privacy in Europe - changes afoot - Mark Webber & Richard Lawne, Fieldfisher LLP
IDTs - transparency, adequacy and GDPR derogations - Hugh McCarthy, Arthur Cox
Group actions for data breaches - the case of Morrisons supermarket - Timothy Pitt-Payne QC, 11KBW
GDPR series: International data transfers - a high level review - Kirill Albrecht & Karen Lee Lust, Reed Smith LLP

October/November 2017
Volume 18, Issue 1

View Front Cover (PDF)

News Items

Working Party’s guidance on profiling creates uncertainty
Privacy Shield: verdict is out
Commissioner sets out thinking on Data Protection Bill
Latest fines in UK
UK proposals for child data consent could be illegal, says peer
Change in the law needed to liberate data for new pensions dashboard, says industry
High Court judge grants data protection injunctions over video content

Articles

The new UK Data Protection Bill - complex but with few surprises - Bridget Treacy, Hunton & Williams
GDPR series: Creating and reviewing data protection policies Part 2 - externalfacing policies - Ann Bevitt, Cooley (UK) LLP
GDPR series: Anonymisation and pseudonymisation - James Clark, DLA Piper
GDPR series: When should a DPO be appointed? - Rob Corbet, Arthur Cox
GDPR series: Record of processing activities - Lynn Wyeth, Leicester City Council

September 2017
Volume 17, Issue 8

View Front Cover (PDF)

News Items

ICO ruffles feathers with latest GDPR ‘myth buster’
UK seeks adequacy-style decision from EU
French regulator fines Hertz for data breach
German media groups aim to create data alliance
Nationwide reaches $5.5 million in settlement of breach investigation
ICO warns NHS employees after former worker fined

Articles

GDPR series: Children and parental consent - James Fenelon, Bird & Bird
GDPR series: Creating and reviewing data protection policies Part 1 — Internalfacing policies - Ann Bevitt, Cooley LLP
GDPR series: the new data subject rights - Calum Docherty, Fiona Maclean & Danielle van der Merwe, Latham & Watkins
Changes to Subject Access Requests in the UK - Alexander de Gaye, Fieldfisher

July/August 2017
Volume 17, Issue 7

View Front Cover (PDF)

News Items

Brexit plans need work, says Committee
Clampdown on social media job snoops
UK Commissioner delivers first Annual Report
ICO’s first ‘International Strategy’
Industry group issues guidance on GDPR legitimate interests
Germany first EU Member State to enact new Data Protection Act

Articles

GDPR series: Data security and response planning - Manish Kumar Soni, PwC
List of monetary penalties levied by UK Information Commissioner
China’s new cybersecurity law: what you need to know - Carolyn Bigg, DLA Piper Hong Kong

June 2017
Volume 17, Issue 6

View Front Cover (PDF)

News Items

With less than a year to go, GDPR prep tools are thick and fast
Privacy Shield: what’s your view?
ICO releases Strategic Plan
Latest fines in UK
Europe concerned about uncertainties of new cybersecurity law in China
Bavarian DPA tests GDPR implementation
Danish government to present report on EU data protection rules

Articles

GDPR series: demystifying DPIAs - Samantha Sayers & Kayleigh Clark, PricewaterhouseCoopers LLP
Direct marketing and privacy: striking that balance - Nicola Flannery, Deloitte Risk Advisory Ireland
Brexit, the Great Repeal Bill and data protection law - Peter Given, & Matt Harris, Bond Dickinson LLP
New Data Protection Bill in Ireland - what’s covered, what’s not - Rob Corbet, Arthur Cox
US broadband privacy rules - troubling times ahead - Sana Khan, Rapid Ratings International Inc.

April/May 2017
Volume 17, Issue 5

View Front Cover (PDF)

News Items

Data Protection Impact Assessments get scrutinized
DPAs approve of new e-Privacy rules, but note concerns
GDPR guidance finalised
First EU-US Privacy Shield review to take place in September 2017
Latest fines in UK
Italian regulator issues record fine in EU
CJEU rules that personal data use permission extends throughout EU
Trump nullifies FCC broadband consumer privacy rules

Articles

GDPR series: A design for life? Designing the future of privacy - Nicola Flannery, Deloitte Risk Advisory
GDPR series: International data transfers 2.0 - Eduardo Ustaran, Hogan Lovells
GDPR series: The role of the DPO - overcoming a GDPR hurdle - Katalina Bateman, Reed Smith LLP
UK regulator’s guidance on GDPR consent - is the definition any clearer? - Chantelle Taylor, Reed Smith

March 2017
Volume 17, Issue 4

View Front Cover (PDF)

News Items

EU-US Privacy Shield threatened with suspension
UK data protection future—talks begin
Microsoft attracts attention of EU DPAs with Windows 10 privacy settings
UK regulator consults on new guidance on consent
Australia passes data breach notification law
Supreme Court in Japan rules on right to be forgotten
UK government launches Digital Strategy

Articles

GDPR series: practicalities of managing the controller - processor relationship - Jenai Nissim, TLT LLP
GDPR series: preparing for One Stop Shop - Bridget Treacy, Hunton & Williams
GDPR series: fining powers of the supervisory authority - Curtis McCluskey, Reed Smith

January/February 2017
Volume 17, Issue 3

View Front Cover (PDF)

News Items

Denham: accountability is key to GDPR compliance
Trump Order prompts panic that Privacy Shield will be invalidated
Article 29 Working Party releases GDPR action plan for 2017
Supreme Court rules that Parliament must have Brexit vote
US Court of Appeals refuses to rehear Microsoft warrant case
UK regulator issues eleven charities with Notice of Intent to fine
Direct marketing complaints on rise in Hong Kong

Articles

GDPR series: the new right to data portability - Nicola Fulford & Krysia Oastler, Kemp Little LLP
GDPR series: building a compliance programme - James Clark, DLA Piper
GDPR series: accountability - a blueprint for GDPR compliance - Kate Brimsted, Reed Smith
The right to be forgotten - a decision from the Irish Circuit Court - Gavin Woods & Gemma O’Farrell, Arthur Cox

December 2016
Volume 17, Issue 2

View Front Cover (PDF)

News Items

Yahoo admits to second staggering data breach
New e-Privacy rules leaked
ICO appoints new Deputy Commissioner
Commission issues further information on so-called Umbrella Agreement
New class action mechanism for data protection in France is wide in scope
New data protection law imminent in Spain

Articles

Directors’ liability - the direction of travel - Dyann Heward-Mills, Baker Mckenzie
GDPR series: the risks with data profiling - Ann Bevitt & Laura Dietschy, Cooley (UK) LLP
The UK Investigatory Powers Act - what it means for your business - Graham Smith, Bird & Bird
GDPR series: personal data - an expanding concept? - Davinia Brennan, A&L Goodbody
The new cyber security law in China - Carolyn Bigg, PDP’s Asia correspondent & Of Counsel, DLA Piper Hong Kong

October/November 2016
Volume 17, Issue 1

View Front Cover (PDF)

News Items

EU DPAs demand answers from Yahoo and Whatsapp
UK government confirms that GDPR will be implemented
UK regulator issues record fine against TalkTalk
FTC publishes new guide on handling data breaches
Commission proposes changes to data transfer mechanisms
Legal challenge to Privacy Shield

Articles

GDPR series: How to operationalise profiling for your organisation - Samantha Sayers & James Drury-Smith - PricewaterhouseCoopers Legal LLP
The ICO’s new Privacy Notices Code of Practice - a review - Peter Given, & Matt Harris, Bond Dickinson
Witness the fitness (to Practice): mixed personal data and Section 7 DPA - Christopher Knight, 11KBW
Ireland’s Data Protection Bill - Rob Corbet, Arthur Cox
Profile of an Information Commissioner: Elizabeth Denham - Polly Ralph (Barrister), PwC UK
Book Review - Data Protection & Privacy - jurisdictional comparisons - Monica Salgado, PricewaterhouseCoopers Legal LLP

September 2016
Volume 16, Issue 8

View Front Cover (PDF)

News Items

Working Party wants e-Privacy framework harmonised with GDPR
Privacy Shield - initial take up slow
German regulator threatens legal challenge against EU-US Privacy Shield
WhatsApp announces intention to share data with Facebook
Mandatory breach notification on agenda once again in Australia
US announces new cyber response framework
Latest enforcement actions in UK

Articles

The future under the e-Privacy Directive - Yuli Takatsuki, Fieldfisher (Silicon Valley)
People, processes, technology - a how to guide to data mapping - Nicola Fulford & Krysia Oastler, Kemp Little LLP
Pulling back the curtain on targeted social media advertising - Alison Deighton, TLT LLP
The role of the DPO - what you need to know - Anita Bapat & James Henderson, Hunton & Williams

July/August 2016
Volume 16, Issue 7

View Front Cover (PDF)

News Items

There's no getting around it: new UK law will be closely aligned with GDPR
Privacy Shield passed - but is it Schrems proof?
Christopher Graham launches his last Annual Report
Bavarian DPA publishes guidance on GDPR
CNIL launches consultation on GDPR
EU Council adopts NIS Directive
New rules on trust service providers incoming in UK

Articles

The Privacy Shield explained - Part 3 - Eduardo Ustaran, Hogan Lovells
A practical guide to impact assessments - Nicola Fulford & Krysia Oastler, Kemp Little LLP
Brexit and the future of data protection - Anya Proops QC - 11KBW
How to build a GDPR programme - a multidisciplinary approach - Monica Salgado - PWC Legal LLP

June 2016
Volume 16, Issue 6

View Front Cover (PDF)

News Items

Data Protection Regulation: the countdown begins
Model Clauses to get ‘Schrem’d’
So long; farewell: from Christopher Graham
US and EU sign Umbrella Agreement
EDPS issues Annual Report
EU Council adopts NIS Directive
New UK Digital Economy Bill

Articles

The Privacy Shield explained - Part 2 - Eduardo Ustaran, Hogan Lovells
The REFIT of the e-Privacy Directive - what can we expect? - Mark Webber, Fieldfisher (Silicon Valley) LLP
Data protection clauses in contracts - adapting to the GDPR - Rob Corbet, Arthur Cox
Preparing for the GDPR - advice for employers - Ann Bevitt & Chris Stack, Cooley (UK) LLP
SBrexit - a data protection perspective - James Mullock, Bird & Bird

April/May 2016
Volume 16, Issue 5

View Front Cover (PDF)

News Items

‘Let’s just put this to bed’: UK Commissioner on Privacy Shield
Law change in UK means nuisance callers may soon be thing of the past
ICO updates guidance on direct marketing
European Parliament adopts Data Protection Regulation
Parliamentary Committee approves Denham appointment
New compounding of data privacy offences regulations in Malaysia
German DPAs make resolution on healthcare apps

Articles

The Privacy Shield explained - Part 1 - Eduardo Ustaran, Hogan Lovells
Shifts in the key conditions for processing - James Clark, DLA Piper
Dual certification: a tale of two frameworks - Daniel Cooper, Covington & Burling LLP
The European Data Protection Board - more than a mere rebranding exercise - Bridget Treacy, & Adam Smith, Hunton & Williams
Sanctions under the GDPR - Rob Corbet, Arthur Cox
The right to be forgotten: the Asian experience - Carolyn Bigg, DLA Piper Hong Kong

March 2016
Volume 16, Issue 4

View Front Cover (PDF)

News Items

Schrems says Privacy Shield is ‘lipstick on a pig’
Judicial Redress Act becomes reality
Working Party begins grappling with GDPR implementation
Data protection issues source of landmark anti-competition probe in Germany
The impact of a ‘leave’ vote in the EU remains unclear
Apple and FBI go head to head in court battle over gunman’s iPhone
UK continues war on nuisance callers and issues largest ever fine

Articles

Monitoring employees’ emails - how far is too far? - Davinia Brennan, A&L Goodbody
The EU-US Privacy Shield - is it strong enough? - Alison Deighton, TLT LLP
The GDPR’s impact on the cloud service provider as a processor - Mark Webber, Fieldfisher (Silicon Valley)
ICO’s guidance on Wi-Fi location analytics - things you need to know - Lorna Cropper & Brian Davidson, Fieldfisher

January/February 2016
Volume 16, Issue 3

View Front Cover (PDF)

News Items

After four years of waiting, language of reform agreed
President signs federal Cybersecurity Information Sharing Act into law
EDPS begins year on intentional note
Government should be championing encryption, says Commissioner
UK government announces new rules to crack down on nuisance calls

Articles

EU General Data Protection Regulation: things you should know - Eduardo Ustaran, Hogan Lovells International LLP
The right to be forgotten - under spotlight - Rosemary Jay & Stuart Taylor, Fieldfisher
The NIS Directive - a practical perspective - Mark Webber & Stuart Taylor, Fieldfisher
Seven key data protection New Year’s Resolutions companies should be making - Ann Bevitt & Amy Collins, Cooley (UK) LLP
Just how fair will processing notices need to be under the GDPR? - Suzanne Rodway, RBS

December 2015
Volume 16, Issue 2

View Front Cover (PDF)

News Items

UK regulator hones in on nuisance callers, issuing fine after fine
Freedom of Member States to legislate on data retention to be clarified
CJEU rules on unfair processing
Proposed powers to monitor bank accounts in France
Belgian court makes ground - breaking order to Facebook
Tracking shop customers using wifi signals breaks privacy rules, says CPB

Articles

FTC v Wyndham: a sea change in regulating cyber security practices - Kurt Wimmer & Caleb Skeath, Covington & Burling LLP
Safe Harbor - is the EU guilty of double standards? - Rob Corbet, Arthur Cox
What Weltimmo said - the future of enforcement in the EU - Christopher Knight, 11 KBW
Asset deals and customer data in Germany - a warning for other Member States? - Silvia C. Bauer, Luther law firm (Germany)
Cyber risk and cyber security - current state of play - Annette Hogan, McCann Fitzgerald
2015 in review - key events and trends - Monica Salagdo, PricewaterhouseCoopers Legal LLP

October/November 2015
Volume 16, Issue 1

View Front Cover (PDF)

News Items

Safe Harbor invalid; Model Clauses and BCRs still stand
European Court rules on which regulators can fine companies
Significant progress on draft law enforcement Directive
California passes sweeping new digital privacy law
UK regulator issues largest ever nuisance calls fine
Facebook goes on EU ‘privacy offensive’

Articles

The demise of the US-EU Safe Harbor - Bridget Treacy & James Henderson, Hunton & Williams
The Taylor Wessing case - uncertainty over subject access? - Davinia Brennan, A&a;L Goodbody (Dublin)
Protecting children’s data - guidance for UK data controllers - Samantha Sayers & Olivier Proust, Of Counsel, Fieldfisher
Monetising personal data whilst staying compliant - an impossible conundrum? - Monica Salagdo, PricewaterhouseCoopers Legal LLP

September 2015
Volume 15, Issue 8

View Front Cover (PDF)

News Items

‘Don’t weaken purpose limitation’, say German regulators
US gives FTC go ahead to monitor cyber security data breach
Russian regulator gives its interpretation of new law
Latest qualified professionals announced
Ashley Madison hackers continue to dump data
Target and Visa reach new deal on data breach settlement
Google incursions
German DPA fines two companies for unlawful transfer of customer data
FTC reaches settlement with 13 companies over Safe Harbor misrepresentations

Articles

Connected cars: an approach to dealing with the privacy risks - Samantha Sayers & Sabba Mahmood, Fieldfisher
New Working Party Opinion on drones - a flight plan for data controllers? - Matt Harris & Peter Given, Bond Dickinson
Data retention by telcos and ISPs - what now? - Georgina Lawrence, Fieldfisher
Changes to Russian data protection law - Elena Polevaya, Baker Botts LLP

July/August 2015
Volume 15, Issue 7

View Front Cover (PDF)

News Items

ICO’s latest Annual Report shows fewer fines, but higher accuracy
Landmark case means online news sites need to proactively monitor content
Home Office not disclosing breaches
European Official makes significant Opinion on nature of ‘an establishment’
Working Party updates guidance on BCRs for processors
Albrecht says agreement on Regulation by end of 2015 feasible
French data protection regulator warns websites on cookie use
Working Party says manufactures should be helping drone operators to comply

Articles

Does the US need an EU-style data protection law? - Randy Sabett & Ann Bevitt, Cooley LLP (US & UK)
Nuisance calls and text messages - lower threshold, higher risk to UK companies - Neelum Dass, Bristows LLP
Wearable technology and the corporate wellness strategy - Katie McMullan, Hogan Lovells International LLP
Misuse of information — the floodgates open - Stephanie Pritchett & Ben Wootton, Pritchetts Law
Data protection in Japan - proposed changes to the law - Alexander Shepherd & Sarina Keung, Simmons & Simmons

June 2015
Volume 15, Issue 6

View Front Cover (PDF)

News Items

Graham — “we are going to need to do things differently”
New US-EU data transfer agreement imminent
US government human resources office hacked
Mandatory data breach notification introduced in the Netherlands
UK police bodies still falling short on records management
UK police force fined £160,000
US law limits snooping, just as UK gears up to make its spies more powerful

Articles

ICO’s approach to cyber security - identifying trends and mitigating risk - Samantha Sayers & Sabba Mahmood, Fieldfisher Waterhouse
Data sharing agreements - avoiding common pitfalls - Heledd Lloyd-Jones, Blake Morgan LLP
Cross device profiling - ensuring compliance - Bridget Treacy & James Henderson, Hunton & Williams
Internet of Things - where are we now? - Rob Corbet, Arthur Cox

April/May 2015
Volume 15, Issue 5

View Front Cover (PDF)

News Items

CNIL makes it easier for company groups to transfer data abroad
Google decision leaves data controllers ‘exposed and vulnerable’
Australia: controversial metadata law passed and Commissioner enforces new data retention rules
GPEN releases first ever annual report
Japan to update its data protection law
Latest fines in the UK
China introduces new protections for consumer personal information
New cybersecurity agency in Singapore

Articles

The EU cookie compliance sweep - lessons to be learned - Katie McMullan, Hogan Lovells
Sensitive personal data - current and future - Ann Bevitt, Cooley (UK) LLP
Avoiding and dealing with Monetary Penalty Notices - Samantha Sayers & Antonis Patrikios, Fieldfisher
Data privacy and cyber risk in M&As - are you prepared? - Davinia Brennan, A&L Goodbody

March 2015
Volume 15, Issue 4

View Front Cover (PDF)

News Items

UK regulator’s powers to audit expanded — NHS bodies watch out
UK government consults on interceptions following landmark ruling
Germany approves new data bill with far reaching rights for consumers
‘Don’t read too much into drafts’, says UK regulator
Proposed new data protection and cybersecurity laws in Thailand
Details of Australia’s proposed data retention law announced
Working Party uncovers results of cookie sweep

Articles

Data protection and surveillance technologies Part 2 – Body Worn Video - Bathilde Waquet, Bristows LLP
Human resources - the big data late-adopter? - Ann Bevitt, Cooley (UK) LLP
Harmonisation of opinions on Model Clauses - mission accomplished? - Sabba Mahmood & Olivier Proust, Fieldfisher
Ryneš and the household exemption - where does it leave us? - Matt Harris & Peter Given, Bond Dickinson LLP
Book Review 'Data Protection and Privacy: Jurisdictional Comparisons' (2nd Ed.) - Stephanie Pritchett, Pritchetts

January/February 2015
Volume 15, Issue 3

View Front Cover (PDF)

News Items

DPA disgruntled after internet giants ride roughshod over privacy concerns
Council’s latest draft of new law leaked
German DPA imposes 1.3 million euro fine on insurance company
Boiler insurance firm fined £90,000 in UK
Council commits to following ICO Code on surveillance
Dublin start-up aims to remove posts and pictures from the web
Eye care firm gets Enforcement Notice over nuisance calls
Government seeks to amend PECR to enable a public emergency alert system

Articles

Privacy notices - clarity and effectiveness - Olivia Whitcroft, OBEP
Data protection and surveillance technologies Part 1 - ANPR - Faye Harrison, Bristows LLP
PECR lives! Nuisance calls in a post-Niebel world - Christopher Knight, 11KBW
Data protection reform - update - Ashley Roughton, Barrister

December 2014
Volume 15, Issue 2

View Front Cover (PDF)

News Items

Working Party issues definitive guidance on take down requests
CJEU makes waves again — this time, CCTV use and household exemption
Giovanni Buttarelli confirmed as next EDPS
Hong Kong banking regulator reminds banks of their customer data protection responsibilities
Pharmacist prosecuted in UK for unlawful access
Enforced subject access request ban - delayed in UK
EU Presidency reformulates one stop shop
Pharmacist prosecuted in UK for unlawful access

Articles

Scrapping Safe Harbor: European scare mongering or a real possibility? - Bridget Treacy & Anita Bapat, Hunton & Williams
Privacy issues and drones: preparing for take-off - Matt Harris & Peter Given, Bond Dickinson LLP
Enforced Subject Access - is it finally the end? - Alexander de Gaye & Sabba Mahmood, FieldFisher
Right to be forgotten - guidance at last? - Monica Salgado, Visa Europe

October/November 2014
Volume 15, Issue 1

View Front Cover (PDF)

News Items

Nuisance calls firms to face more fines in UK
DPAs resolve on global enforcement for data breaches
ICO publishes revised CCTV Code
Committee selects Giovanni Buttarelli as new EDPS
MPs investigate financial system’s cyber weaknesses
Introduction of jail time for data protection breaches receives further setback in UK
UK data protection fees to remain
Advances in APEC data privacy schemes and joint referral scheme with EU

Articles

Getting the UK regulator’s seal of approval - value added? - Samantha Sayers & Sabba Mahmood at Fieldfisher
Stop Press! The ICO’s new guide for the media - Hanna Crowther, Bristows LLP
Internet of Things revisited - Monica Salgado, Registered European Lawyer
Hong Kong - guidance for the banking industry - Alexander Shepherd & Carolyn Bigg

September 2014
Volume 14, Issue 8

View Front Cover (PDF)

News Items

Emergency data retention law to be challenged
UK regulator takes on Big Data
EU data protection proposals would kill fundraisers’ mailing lists, says report
Singapore courts hand down fines for first prosecutions
No ‘high assurance’ ratings in latest audits
CNIL to increase scrutiny of cookie law compliance
Latest Annual Report shows unsolicited marketing still a ‘major concern’
Massive personal data theft in Japan

Articles

ICO’s Big Data Report - guidance for DPOs - Samantha Sayers & Brian Davidson, Fieldfisher Waterhouse
Google and the ‘right to be forgotten’ - setting the record straight - Ashley Roughton, Barrister
The wider effect of the ‘right to be forgotten’ case - Eduardo Ustaran, Hogan Lovells
Canada’s anti-spam legislation - a high bar? - Sylvia Kingsmill, Deloitte (Canada)
CJEU judgment on personal data and SARs - what does it mean? - Monica Salgado, Speechly Birchams

July/August 2014
Volume 14, Issue 7

View Front Cover (PDF)

News Items

Working Party ‘sets record straight’ on risk-based approach
Enforced subject access requests to be illegal in UK by December
EU citizens to get right to sue in US for wrongful disclosure
EU authorities to coordinate regarding ‘take down’ requests
Major provisions of Singapore law now in force
Brazil’s Internet law enters into force

Articles

Anonymisation - a process living on borrowed time? - Kate Brimsted, Reed Smith LLP (with Katalina
Chin contributing)
CCTV - updates for the 21st Century - Hannah Crowther, Bristows LLP
Draft ad hoc contractual clauses for EU data processor to non-EU sub-processor - consensus at last? - Dominika Kupczyk, Fieldfisher
Data retention - what now? - Monica Salgado, Speechly Bircham
Singapore’s data protection law - the key components - Carolyn Bigg, Simmons & Simmons

June 2014
Volume 14, Issue 6

View Front Cover (PDF)

News Items

Regulators left in quandary as ECJ creates right to be forgotten
UK regulator consults on new CCTV Code
Regulator publishes in depth guidance on IT security
Update on DP reform
Clinical trials Regulation more thoughtful of data protection
Laws on legal communications ‘need to catch up with digital age’
More stringent data protection rules for ICSPs in South Korea

Articles

‘Legitimate interests’ - clarifying the scope - Samantha Sayers, Fieldfisher Waterhouse
Microsoft and the US court - complying with US search warrants - Rob Corbet, Arthur Cox
Parental photography at school events: going beyond the exemption in section 36 - Claire Bessant, Nortumbria University
Largest fine ever in Europe - what can we learn? - Monica Salgado, Speechly Bircham
New data protection law in Brazil - Monica Salgado, Speechly Bircham
Monetary Penalties imposed by the ICO - Resource List produced by PDP Journals

April/May 2014
Volume 14, Issue 5

View Front Cover (PDF)

News Items

Uncertainty for EU ISPs as Court declares retention law invalid
CNIL gets new inspection powers affecting all companies selling goods to French
UK hospital promises to improve staff training
Survey of SMEs reveals compliance motivations
Home improvement company receives £50,000 fine
New Opinion on breach notification
Safe Harbor here to stay

Articles

Apps and privacy Part 3: appropriate security and retention - Olivia Whitcroft, OBEP
The draft Data Protection Regulation: can we start counting our chickens? - Hannah Crowther, Bristows
Data protection - a contextual approach to regulation - Steve Lorber, Lewis Silkin LLP

March 2014
Volume 14, Issue 4

View Front Cover (PDF)

News Items

EU DPAs and APEC team up to produce checklist on data transfers
New plans for UK patient data shelved following privacy backlash
New Opinion on data protection and law enforcement
Subject Access Code of Practice updated in UK, and enforced subject access to be outlawed
Privacy groups challenge Facebook’s WhatsApp purchase
Parliament approves Regulation
UK regulator publishes PIA Code

Articles

Apps and privacy Part 2: playing a part - Olivia Whitcroft, OBEP
Data Protection Authorities versus Google - latest developments and practical implications - Monica Salgado, Speechly Bircham LLP
Reporting data breaches to the ICO - is honesty really the best policy? - Cynthia O’Donoghue, Reed Smith
Care.data - why should we care? - Stephanie Pritchett, Pritchetts Law

January/February 2014
Volume 14, Issue 3

View Front Cover (PDF)

News Items

Reding rallies troops to power forward with reform
LIBE recommends close down of US/EU data flows and that UK cleans up its act
European Data Protection Day — celebrations
Google — fined by the Spanish and French authorities, and sued in the UK
Safe Harbor misrepresentation discovered
EDPS post to be vacant?

Articles

Apps and privacy: App-lying the rules and App-easing the users - Olivia Whitcroft, OBEP
Kelway: applying a blunt sword to the ‘personal data’ Gordian knot? - Kate Brimsted, Reed Smith
Is Safe Harbor really dead in the water? - Katie McMullan & Samantha Sayers, Field Fisher Waterhouse
Share and share alike - attitudes towards data sharing in the UK public sector - Marion Oswald, University of Winchester

December 2013
Volume 14, Issue 2

View Front Cover (PDF)

News Items

Reform stunted as key advisor casts doubt over one stop shop
UK regulator debates its future as funding crunch gets closer
Germany appoints a new Federal Commissioner
Public authorities can charge to deal with subject access requests, EU court rules
China’s law amendments widen data protection
Sex club loses privacy battle in UK
Apps must respect privacy over data, says UK regulator

Articles

The right to be forgotten - the debate continues - Nick Graham & Alexandra Cooper, Dentons
Looking outside the Prism: how safe are data transfers? - Gail Crawford & Fiona Maclean, Latham & Watkins
DPOs - top ten tips for making better appointments - Monica Salgado, Speechly Bircham LLP
The ‘Internet of Things’ - already in a home near you? - Bridget Treacy, & Anita Bapat, Hunton & Williams
Data protection in Gibraltar - Michael Nahon, Hassans in Gibraltar

October/November 2013
Volume 14, Issue 1

View Front Cover (PDF)

News Items

LIBE approves Compromise Text; ball now with Member States
Working Party gives new guidance on cookie consent
Spammer successfully appeals against ICO fine
Parliament resolves to suspend deal transferring payments data from the EU to US
US spying on German Chancellor threatens major diplomatic spat
Adobe in source code and customer data security breach

Articles

The path to a new EU data protection framework - Eduardo Ustaran, Field Fisher Waterhouse
New rules on breach notification by telecoms and ISPs - clarity at last? - Davinia Brennan
Augmented reality - a leap into a new world - Olivia Whitcroft, OBEP
Employees’ use of social media - navigating the potential pitfalls - Ann Bevitt
Ireland’s direct marketing laws - a burden on businesses? - Rob Corbet, Arthur Cox

September 2013
Volume 13, Issue 8

View Front Cover (PDF)

News Items

Working Party asks - is ‘Safe Harbor’ still safe?
New breach reporting rules for ISPs and telecoms - now in force
South Africa passes Data Protection Bill
New Code of Practice on SARs in UK
UK regulator consults on PIA Code of Practice
Irish regulator to audit Apple

Articles

PIAs and privacy by design - using them to your advantage - Monica Salgado, Speechly Bircham
ICO’s new Subject Access Code - a toolkit for compliance - Sian Rudgard & Brian Davidson, Field Fisher Waterhouse
Cross regulatory challenges - strategies for UK police bodies - Scott Nicholson, IBM
Ireland and the US find common ground - Rob Corbet, Arthur Cox

July/August 2013
Volume 13, Issue 7

View Front Cover (PDF)

News Items

Privacy regulators enforce data protection law against Google
Fall out from PRISM continues
UK government to consult on introducing custodial penalties for breaches of the DPA
Working Party takes ‘middle ground’ on profiling
Italian DPA orders Facebook to clarify processing
GlaxoSmithKline gets BCRs approval
ICO fines cold-calling company £225,000

Articles

Risk, Accountability, and Binding Corporate Codes: a ‘smarter’ approach to data protection - Richard Thomas CBE (former UK Information Commissioner), Centre for Information Policy Leadership
Social media - challenges in the control of information - Olivia Whitcroft, OBEP
Monetary Penalty Notices - a one stop shop to avoidance - Helen Rose, Bristows

June 2013
Volume 13, Issue 6

View Front Cover (PDF)

News Items

Frenzied lobbying continues as Regulation nears finality
EU demands that light is thrown on Prism
Latest fines in UK — lack of staff training largely at fault
Working Party takes ‘middle ground’ on profiling
New guidance on social networking and online forums in UK
New Opinion on smart grid and smart metering systems
Sweden’s DPA bans Google cloud services

Articles

EU v US data protection - exploring the similarities - Rob Corbet, Arthur Cox
Aligning corporate ethics compliance programs with data protection - Karin Retzer, Morrison Foerster
Data on smart devices - are data subjects being protected? - Colin Rooney, Arthur Cox
Purpose limitation - clarity at last? - Bridget Treacy & Anita Bapat, Hunton & Williams
China takes a giant step forward in data privacy - Scott Thiel, Arthur Cheuk & Belinda Tang, DLA Piper

April/May 2013
Volume 13, Issue 5

View Front Cover (PDF)

News Items

‘Purpose limitation’ analysed in depth by Working Party
The latest on data protection reform
New Opinion on mobile apps
Six EU DPAs form taskforce to deal with social network
Google fined by German DPA
Payment security standards to mandate sharing of risk info?

Articles

Did ‘mission impossible’ just become mission (almost) impossible? ICO’s draft code on subject access - Kate Brimstead, Herbert Smith
Joining the dots - intelligence and proportionality - Marion Oswald, University of Winchester
The expanded role of the DPO - Lisa Jackson, Leman Solicitors
South Africa introduces data protection law - Pamela Stein, Webber Wentzel

March 2013
Volume 13, Issue 4

View Front Cover (PDF)

News Items

Europe and US divide once again over cyber security
EU’s new mass data storage plans arouse suspicion of MEP
Google to appear before European regulators this Summer?
UK regulator publishes new analysis paper on Regulation
Denmark government postpones revision of data retention law
Guernsey census data protection a ‘priority’

Articles

Making it personnel - unlawful practices by HR departments - Stephanie Pritchett, Pritchetts
Bring Your Own Device - protecting data on the move - Olivia Whitcroft, OBEP
Leveson’s data protection proposals - Part 2 - Robin Hopkins, 11KBW

January/February 2013
Volume 13, Issue 3

View Front Cover (PDF)

News Items

‘Stricter and tougher to navigate’ - LIBE Committee’s proposals
EU proposes ban on BCRs and model clauses for cloud computing
Dutch and Canadian regulators’ landmark collaboration
China adopts data protection rules
Singapore data protection law now in force
New Zealand given adequacy status
UK regulator approves American Express BCRs

Articles

The new right to data portability - Anita Bapat, Hunton & Williams
Things to do to prepare for the new Regulation - Colin Rooney, Arthur Cox
EU data protection proposals - implications for employment - Steven Lorber, Lewis Silkin
Consent - the silver bullet? - Victoria Hordern, Field Fisher Waterhouse
ICO’s audits - lessons to be learned - Sue Gold, Osborne Clarke

December 2012
Volume 13, Issue 2

View Front Cover (PDF)

News Items

Regulator derides public sector for unacceptable data losses
Report recommends tightening data protection law to protect privacy
EU privacy watchdogs begin probe of Microsoft
Anonymisation need not guarantee a person’ privacy, says regulator
SpongeBob app disappears following privacy criticism

Articles

Data anonymisation and managing risk - the ICO’s new code - Marion Oswald University of Winchester
What can we learn from the Google experience? - Gail Crawford & Fiona Maclean, Latham & Watkins
Leveson’s data protection proposals - Part 1 - Rachel Kamm, 11KBW
Potential pitfalls of the draft Regulation - Monika Kuschewsky, Van Bael & Bellis

October/November 2012
Volume 13, Issue 1

View Front Cover (PDF)

News Items

Clouds on the horizon as they move up regulatory agenda
Working Party makes it personal in latest Opinion
Medical loophole in draft Regulation?
Regulator launches complaints assistant
UK’s new Surveillance Commissioner - UK could be violating human rights
ODPC concludes second privacy audit of Facebook
ICO faces raft of appeals over fines and other enforcement actions

Articles

The changing face of cloud computing and data protection - Monika Kuschewsky, Van Bael & Bellis
BCRs under the Regulation - reasons to be cheerful? - Sian Rudgard, Field Fisher Waterhouse LLP
Foreign account tax compliance provisions, data protection and other ‘local law’ issues - Richard Jones & David Moldenhauer, Clifford Chance
Midata and the unstoppable rise of the personal data services provider - Kate Brimsted, Herbert Smith Feehills LLP

September 2012
Volume 12, Issue 8

View Front Cover (PDF)

News Items

EU privacy chief erupts over asylum seekers database
Compliance can be suspended for data put ‘beyond use’
Body fined £250,000 for failing to have data processor contract
Massive Apple data breach
New data protection law imminent in Singapore
Campaign group calls for schools to come clean about CCTV in toilets
Injunction sought over topless Kate photos

Articles

Guidance on exemptions to cookie consent - Simon Elliott, SNR Denton
Monetary penalties - lessons learned - Peter Given, Bond Pearce LLP
Should what happens in Vegas stay in Vegas? - Penelope Jarvis, Eversheds
Data Protection in Brazil - Evy Cynthia Marques, Santos Neto & Montgomery

July / August 2012
Volume 12, Issue 7

View Front Cover (PDF)

News Items

Safe Habor not safe enough, says Working Party
New call for evidence on Regulation
Working Party endorses Binding Corporate Rules for Processors
Leaked document shows revisions to Regulation
Irish and French regulators give new guidance on cloud computing
Annual Report shows massive increase in unsolicited marketing
Citigroup gets BCR approval

Articles

Challenging times ahead for data processors - Bridget Treacy, Hunton & Williams
Clarifying the scope of personal data - Damien Welfare, Cornerstone Barristers
Article 29 Working Party faces up to online and mobile services - Mark Watts and Sacha Wilson, Bristows
Malaysia’s data protection law imminent by Carolyn Bigg, Simmons & Simmons
Book Review - 'Data Protection & Privacy - jurisdictional comparisons' - Stephanie Pritchett, Pritchetts

June 2012
Volume 12, Issue 6

View Front Cover (PDF)

News Items

No consent for cookies needed here, say EU DPAs
Swiss ruling means Google can stay
Proper safeguards needed over smart meters, warns EDPS
Web host claims ICO confusion led to costs to SMEs
Facebook ignores users over data use policy
Regulator to investigate civil service data breach claim
Daily penalty payment for Germany

Articles

Data protection provisions for outsourcing contracts - Richard Jones, Clifford Chance
What is a ‘relevant filing system’ and, more importantly, why is it relevant? - Suzanne Rodway, NBC Universal
Data Protection Impact Assessments: look before you leap - Stephanie Pritchett, Pritchetts

April/May 2012
Volume 12, Issue 5

View Front Cover (PDF)

News Items

Working Party chimes in on Regulation's shortcomings
Explosion in requirement for DPOs
ICO defends fining policy and indicates what fines lie ahead
London Marathon runners details shared
Personal data definition adjusted in UK
Government revives plan for greater data sharing between agencies

Articles

The new Data Protection Regulation - further steps on the road towards adoption - Henry de Waele, Radboud University Nijmegen
Obtaining consent for cookies - Eduardo Ustaran, Field Fisher Waterhouse
The draft Data Protection Regulation - a new era for data processors? - Emma Burnett and Julia Graham, CMS Cameron McKenna LLP
The new rules on using children’s data - Anita Bapat, Hunton & Williams
Book review - ‘Privacy Impact Assessment’, by David Wright and Paul de Hert - Stephanie Pritchett, Pritchetts
Developments in Data Protection and Privacy Laws in the Middle East - Fiona Tyas,Simmons & Simmons

March 2012
Volume 12, Issue 4

View Front Cover (PDF)

News Items

Obama Bill proposes privacy by ‘voluntary agreement’
UK wants in on PNR data sharing
Clarification of right to be forgotten
25 members of ubiquitous hacking group arrested
Spain makes referral to ECJ on right to be forgotten
Report of Dutch DPA highlights failings

Articles

Implications of replacing the Data Protection Directive with a Regulation - a legal perspective - Henri de Waele, Radboud University Nijmegan
New EU data protection sanctions - vital shock treatment or another fine mess? - Kate Brimsted, Herbert Smith LLP
Data Protection reform - the French perspective - Thierry Bernard, Quadrige
The draft Regulation - does every cloud have a silver lining? - Alexander Brown & Clare Adam, Simmons & Simmons LLP
Hungary’s new data protection regime - is it full circle for Hungary? - Paul Byfield, EBRD
Compulsory breach notification rules - benefit or burden? - Nick Graham & Majdi Silk, SNR Denton
An audience with Viviane Reding - Rezzan Huseyin, PDP Journals

January/February 2012
Volume 12, Issue 3

View Front Cover (PDF)

News Items

Draft Regulation on track but Directorates may scupper plan
OBA industry’s self-regulation plan ‘not adequate’, says Working Party
UK regulator produces practical guidance on cookies
Draft data protection and law enforcement Directive leaked
Sat nav company cleared

Articles

Formalising the role of the DPO - the practical consequences - Bridget Treacy, Hunton & Williams
Extra territoriality and international transfers under the draft Regulation - Richard Jones, Clifford Chance
The right to be forgotten - the fog finally lifts - Monika Kuschewsky, Van Bael & Bellis
Defending a Notice of Intent - Liz Fitzsimons, Eversheds LLP
ECJ rules on the limits to national variances - Monika Kuschewsky, Van Bael & Bellis

December 2011
Volume 12, Issue 2

View Front Cover (PDF)

News Items

Draft of EU Regulation leaked,changes are all-encompassing
Three new fines from UK regulator, one the largest ever
US company obtains approval for BCRs
First Nordic-led BCR gets authorised
UK body left data on 7,200 citizens in skip

Articles

From consensual to compulsory - what to expect when the ICO comes knocking - Hazel Grant, Helen Rose and Amy Cullen, Bristows
ICO’s briefing on the future of data protection in EU - Anita Bapat, Hunton & Williams
Data Protection in the gaming industry - Part 2 - James Brunger, Amy Cullen and Scott Allardyce, Bristows
Security breach notification - the German experience - Dr Jörg Hladjk, Hunton & Williams
The rising in the East - Carolyn Bigg, Simmons & Simmons

October/November 2011
Volume 12, Issue 1

View Front Cover (PDF)

News Items

Publication of new law delayed
Barnes & Noble obtain Borders customer list
US Congress examines impact of EU privacy laws
UK Cabinet Office publishes transparency review

Articles

Commissioner's power to fine - eighteen months on - Francis Aldhouse, Bird & Bird
Commissioner's evidence to the House of Commons - Analysis - Bridget Treacy and Anita Bapat, Hunton & Williams
Who, me gov? How to ensure government transparency does not cost citizens their privacy - Kate Brimsted, Herbert Smith
Data Protection in the gaming industry - James Brunger, Amy Cullen and Scott Allardyce, Bristows

September 2011
Volume 11, Issue 8

View Front Cover (PDF)

News Items

Online behavioural advertising framework lambasted
FT pulls app following customer data dispute
ICO publish first private sector audits
Belgium simplifies BCRs procedure

Articles

Clarifying consent - Eduardo Ustaran & Victoria Hordern, Field Fisher Waterhouse
Privacy backlash - freedom campaigners' fantasy or imminent peril for business? - Peter Carey, Charles Russell
One hack of a scandal - Nick Graham, SNR Denton UK LLP
Don't shoot the (Blackberry) messenger - the technology of riots - Adrian Sim, Bristows

July/August 2011
Volume 11, Issue 7

View Front Cover (PDF)

News Items

EU’s challenge to industry: new standard for cookies by mid 2012
All UK firms to face breach reporting
Avoiding fines - the lowdown
Housing sector should 'wake up' to data protection

Articles

Handling data security breaches - is it time to revisit your procedures? - Kate Brimstead, Herbert Smith LLP
Whistleblowing - avoiding the hot water when others let off steam - Stephanie Pritchett, Pritchetts
Money laundering and data protection - where do we stand? - Richard Jones, Clifford Chance LLP
Geolocation services on smart mobile devices - how to be compliant - Paul Gershlick, Matthew Arnold & Baldwin LLP

June 2011
Volume 11, Issue 6

View Front Cover (PDF)

News Items

Sony hacked to distraction
Supreme Court rules that UK retains citizens’ DNA illegally
Working Party gives strict opinion on geolocation data
Hustinx says Retention Directive is illegal

Articles

New cookie law: overcoming the challenges - Bridget Treacy, Partner, Hunton & Williams
Article 29 Working Party Opinion on Smart Metering - Monika Kuschewsky and Laura De Boel, Van Bael & Bellis
Anti-Bribery Law: reconciling the new Act with data protection - Bridget Treacy, Partner, Hunton & Williams
Is Europe ready to take on a US style security breach notification law? - Anne Wilkes, ACW Privacy Consulting

April/May 2011
Volume 11, Issue 5

View Front Cover (PDF)

News Items

Play.com data breach
Telcos fined
Estate agent convicted
EC to protect children’s data

Articles

Cloud Computing - the data protection issues - David Cullen, William Fry
How do employers protect data from theft by their own employees? - Stephanie Pritchett, Pritchetts
RFID - the current state of play - Monika Kuschewsky and Laura De Boel, Van Bael & Bellis
Book review: 'Cloud Computing - a practical introduction to legal issues' - Mark Watts, Bristows

March 2011
Volume 11, Issue 4

View Front Cover (PDF)

News Items

Israel formally added to 'adequate' list
Council to tighten policy after loss of memory stick
ICO encourages public to secure data online

Articles

Article 29 Working Party clarifies the rules on the applicable data protection law - Monika Kuschewsky, Van Bael & Bellis
The right to be forgotten: can legislation put the data genie back in the bottle? - Kate Brimsted, Herbert Smith
Mandatory breach notifications for telecoms - what to expect and how to prepare? - Martijn ten Bloemendal, Hunton & Williams
What does privacy in the workplace really mean in Europe? Part II - Anne Wilkes, ACW Privacy Consulting Ltd

January/February 2011
Volume 11, Issue 3

View Front Cover (PDF)

News Items

New privacy principles for Scotland
Data security breach at The White House
Cloud computing could provide €763bn to top five EU countries

Articles

A new strategy for reform - the EU Data Protection Directive - Monika Kuschewsky and Laura De Boel, Van Bael & Bellis
Another step closer to a harmonised data protection enforcement regime in Europe? Part 1 - Anne Wilkes, ACW Consulting Ltd
How long should I keep data for? - Stephanie Pritchett, Pritchetts
Privacy and data protection risks for IT programmes - a practitioner’s view - Jacqui Peace, independent Privacy Consultant
Book review: 'The Law Society' - Duncan Lamont, Charles Russell LLP

December 2010
Volume 11, Issue 2

View Front Cover (PDF)

News Items

T-Mobile employee pleads guilty to data breach offence
Internal data breach at PwC
Council discloses personal data on planning department website

Articles

Data Sharing - the ICO Consultation on the new Code of Practice - Nick Graham, SNR Denton
Behavioural Advertising: time to tame the cookie? - Kate Brimsted, Herbert Smith
Survey: Consent to the processing of children’s data across the EU - Nicola Fulford, Bristows

October/November 2010
Volume 11, Issue 1

View Front Cover (PDF)

News Items

European Commission takes UK to Brussels
BT admits part in porn list leak
Website blacklists deviant hotel guests

Articles

Working Party Opinion on principle of accountability – new obligations for data controllers or old wine in new bottles? - Monika Kuschewsky, Van Bael & Bellis
FAQs on the new Model Clauses - do they help? - Rob Corbet, Arthur Cox
Data ownership in social networks - a very personal thing - Robert Bond, Speechly Bircham
Data protection: back to basics - Part 9 - Peter Carey, Charles Russell

September 2010
Volume 10, Issue 8

View Front Cover (PDF)

News Items

Three Undertakings involving data security breaches
Facebook introduces new location-revealing service
Study highlights new ‘way in’ for hackers
Telecoms companies under investigation in Hong Kong

Articles

Does new Working Party Opinion spell end for online behavioural advertising? - Monika Kuschewsky, Van Bael & Bellis
ICO’s personal information online Code of Practice - Helen Rose, Bristows
Highlights from the Information Commissioner’s Annual Report - Cate Haywood, Hunton & Williams
Data protection: back to basics - Part 8 - Peter Carey, Charles Russell
Privacy pips pragmatism - so the end no longer justifies the means - Duncan Lamont, Charles Russell

July/August 2010
Volume 10, Issue 7

View Front Cover (PDF)

News Items

New Opinion on online behavioural advertising
French DPA indicates sensitive data was caught by Wifi
Twitter settles first of its kind case with FTC
Commissioner writes to Unite over data protection registration

Articles

Help! I’m being investigated by the ICO - Stephanie Pritchett, Pritchett's Law
Interview with Jonathan Bamford
Data protection considerations in company liquidation - Julian Gauld, Herbert Smith LLP
Data protection: back to basics - Part 7 - Peter Carey, Charles Russell
Ireland’s moves towards mandatory breach reporting - Colin Rooney, Arthur Cox

June 2010
Volume 10, Issue 6

View Front Cover (PDF)

News Items

Working Party writes to big three search engines
Council signs Undertaking after losing childrens’ data
ID scheme will be first to go
Privacy a key focus in EU’s Digital Agenda

Articles

Making a compelling case for investing in privacy - Kate Brimsted, Herbert Smith LLP
Using privacy impact assessments - Stephanie Pritchett, Pritchett’s Law
Location based services - a review of the regulatory framework - James Brunger, Bristows
Data protection: back to basics - Part 6 - Peter Carey, Charles Russell

April/May 2010
Volume 10, Issue 5

View Front Cover (PDF)

News Items

ICO publishes three year plan
Europe investigates 'tagging'
EDPS wants privacy designed into DP law
FOI guidance imminent
And the award for best data protection goes to...

Articles

Working Party confirms 'controller' and 'processor' distinction - Bridget Treacy, Partner, Hunton & Williams
Data protection: back to basics - Part 5 - Peter Carey, Consultant, Charles Russell
Data subjects rights - are they inadequate? - Liam Curren and Dr Jane Kaye, EnCoRe Project and University of Oxford
Changes to German data protection law - Jörg Hladjk, Associate, Hunton & Williams
Where fines might hit the hardest - James Castro-Edwards, Solicitor, Speechly Bircham LLP

March 2010
Volume 10, Issue 4

View Front Cover (PDF)

News Items

US links data breaches to file sharing
'Internet of things' draws closer
Most trusted privacy measures revealed

Articles

ICO's Guide to Data Protection - easy as ABC? - Suzanne Rodway, Barclays
Rise of biometric data sharing - but who is looking after data subjects' rights? - Nick Graham and Tristan Jonckheer, Denton Wilde Sapte
Data protection: back to basics - Part 4 - Peter Carey, Data Protection Consultant
New controller to processor model clauses - the verdict - Eduardo Ustaran, Field Fisher Waterhouse
Handling access requests - lessons from the Access Rights Index - Thierry Bernard, Quadrige
Privacy cases - has John Terry dropped Mosley's baton? - Mark Watts and Justin Costley, Bristows

January/February 2010
Volume 10, Issue 3

View Front Cover (PDF)

News Items

Mortgage company signs Undertaking
Working Party issues ‘Future of Privacy’ roadmap
Giant database goes live

Articles

Mortgage company signs Undertaking
Working Party issues ‘Future of Privacy’ roadmap
Giant database goes live Articles
Fines for data protection breaches - the new regime - Richard Jones, Clifford Chance LLP
Data protection: back to basics - Part 3 - Peter Carey, Charles Russell
Use of violent warning markers... under attack? - Mark Watts, Bristows
New EU cookie rule - a practical way forward - Eduardo Ustaran, Field Fisher Waterhouse
Under the spotlight: police retention of conviction data - Bridget Treacy and Anthea Terlegas, Hunton & Williams
Data security Part 2 - ten ways to promote data security best practices - Richard Hollis, Orthus

December 2009
Volume 10, Issue 2

View Front Cover (PDF)

News Items

ICO produces new Guide on Data Protection
Expert recommends acting now over cookie law
Queen gets tough on paparazzi in royal row
US sued over failure to specify use of data

Articles

Data protection: back to basics - Part 2 - Peter Carey, Charles Russell
Anonymisation and pseudoanonymisation of personal data - Nick Graham and Sean Crowley, Denton Wilde Sapte
New draft international proposal standards - a welcome proposal - Monika Kuschewsky, Van Bael & Bellis
Data security Part 1 - five factors leading to data compromise - Richard Hollis, Orthus
US online behavioural advertising - the changing landscape - Julie O’Neill, Morrison & Foerster

October/November 2009
Volume 10, Issue 1

View Front Cover (PDF)

News Items

Pharmacy firm's data breach escalating
Italian bullying video case - update
FBI snooping to continue?
CEO penalised for being uncooperative

Articles

Data protection: back to basics - Part 1 - Peter Carey, Charles Russell
Contracting out of data protection responsibilities - Richard Jones, Clifford Chance LLP
Data security issues in the NHS - Jackie Gray, Dickenson Dees LLP
Standard contractual clauses for data transfers outside of the EEA - Rob Corbet and Úna Ní Mhurchú, Arthur Cox
Israel’s data protection reform - Israeli Ministry of Justice "Schoffman" Committee
Book Review, 'Data Protection - A Practical Guide to UK and EU Law' - Bridget Treacy, Hunton & Williams

September 2009
Volume 9, Issue 8

View Front Cover (PDF)

News Items

Smartphone applications track users' locations
Google to address Swiss concerns
IRS brings in the heavies for tax scour
Facebook accepts Canadian privacy recommendations

Articles

Security breach notification in Europe - Kristof Van Quathem, Covington & Burling LLP
Online social networking - keeping up with the reality - Monika Kuschewsky, Van Bael & Bellis
Secondary uses of NHS data - occupational health services - Mark Watts and James Brunger, Bristows
Secure the pearly gates, not the cloud - Alf Pilgrim, Clearswift

July/August 2009

Volume 9, Issue 7

View Front Cover (PDF)

News Items

Power to fine - not until next year
Swiss block UBS data handover
Unmasking of obscene hacking operations
Computer virus frenzy at the NHS

Articles

ICO’s new Code on Privacy Notices - Nick Graham and Simon Elliot, Denton Wilde Sapte
RAND - a report worth reading to the end! - Bridget Treacy, Hunton & Williams
A new Information Commissioner … but still no fines - Grant Campbell, Brodies
Data protection law in Russia - Dan Guildford and Ekaterina Bekker, Dewey & LeBoeuf

June 2009
Volume 9, Issue 6

View Front Cover (PDF)

News Items

BCS launches 'data protection equivalent of Highway Code'
EU sues Sweden
Germany to get Street View despite privacy complaints
Resignation of rail chief after repeated snooping

Articles

Secondary uses of personal data in the NHS - Part 1 - Mark Watts and James Brunger, Bristows
Surveillance at the workplace - how to avoid the pitfalls - Monika Kuschewsky, Van Bael & Bellis
Richard Thomas - the expansive years - Peter Carey, PDP
Privacy & matrimonial self help - Robin Bynoe, Charles Russell

April/May 2009
Volume 9, Issue 5

View Front Cover (PDF)

News Items

Fools rush in to hiding behind DPA, says ICO
19,000 UK credit card details accessible
EU: ‘security capabilities vary vastly’
Stronger penalties for peeping toms

Articles

BSI - a standard approach to preventing security breaches? - Nick Graham and Simon Elliott, Denton Wilde Sapte
A fair processing notice by any other name ..., by Suzanne Rodway, Barclays
US pre-trial discovery - reconciled with European data protection law? - Monika Kuschewsky, Van Bael & Bellis
Dirty work - criminal aspects of bin trawling - Ashley Roughton, Hogarth Chambers, and D’yann Heward-Mills, Linklaters
Spam Asia - Part II - Anju Malik and Lewis Ho, Simmons & Simmons

March 2009
Volume 9, Issue 4

View Front Cover (PDF)

News Items

PC passes force data to friend
New survey says jobs at risk = data at risk
Proper supervision needed for data mining
Actor bedding models suspects unauthorised access

Articles

How far are we protected from ourselves? - Mark Watts, Bristows
Power to fine research research - the results - PDP news team
Navigating the data breach minefield: strategies - Bridget Treacy, Hunton & Williams
Spam Asia - Part 1 - Carolyn Bigg and Damien Bailey, Simmons & Simmons

January/February 2009
Volume 9, Issue 3

View Front Cover (PDF)

News Items

New IC says role is at heart of debates
New NAI Principles just don’t cut it?
Coming to a cab driver near you?
College kids enlisted in data gathering

Articles

Privacy and the workplace - Gabriella Wright, Employment Specialist
Cloud computing - data protection concerns unwrapped - Bridget Treacy, Hunton & Williams and Paula Bruening, Centre for Information Policy Leadership
Data protection law in Dubai - Nick Graham and Michael Loffler, Denton Wilde Sapte

December 2008
Volume 9, Issue 2

View Front Cover (PDF)

News Items

EDPS on patients' rights
The longer arm of Facebook
Disastrous disposal
Candidates to confess

Articles

Controllers vs. processors - useful distinctions, or distracting labels? - Kate Brimsted, Herbert Smith
The dangerous disparities with privacy policies - Ben Taylor, Ernst & Young
Paying the piper, calling the tune - Gabriella Wright, Employment law specialist
Whistleblower hotlines and data protection - Richard Jones, Clifford Chance and Josephine Warren, BBC World News

October/November 2008
Volume 9, Issue 1

View Front Cover (PDF)

News Items

Binding Corporate Rules – mutual recognition
WiFi no longer secure
Orgy goes to Strasbourg
US plough ahead with Sat-Surveillance despite privacy issues

Articles

Dealing with staff data breaches - Gabriella Wright, Employment Specialist
The T5 fiasco - what does it tell us about the future of biometrics and data protection? - Nick Graham and Michael Loffler, Denton Wilde Sapte
How to combat identity theft in the corporate world - an essential guide - Peter Wood First Base Technologies
The Commissioner’s keynote speech - highlights, PDP News Team

September 2008
Volume 8, Issue 8

View Front Cover (PDF)

News Items

Draft 2008 Electronic Communications Regulations
Students subject to scanners
Fingerprinting of passengers inevitable
Unsecured data stick puts Gastronuts kids at risk

Articles

How to win workers’ trust - a guide to applying the core Principles - Employment Specialist, Gabriella Wright
Data Sharing Review - raising the spectre of tougher enforcement in the UK - Bridget Treacy, Partner at Hunton & Williams
Max Mosley triumphs - but are the damages done? - Nicola Russell, Associate at Bristows
The devil and the deep blue sea - US & EU discussions on sharing personal data - Richard Jones, Director of Data Privacy at Clifford Chance

July/August 2008
Volume 8, Issue 7

View Front Cover (PDF)

News Items

ICO serves HMRC and MOD with Enforcement Notices
An Annual Report and a birthday
Data Sharing Review
UK on verge of de facto privacy law?

Articles

e-Discovery and EU privacy laws - Part II
Information security and lessons from HMRC - an overview of the Poynter and IPCC reports
Transferring employee data - a clearer picture?
The changing face of data security law - Part II
Impact of the CSA judgment - more questions than answers?

June 2008
Volume 8, Issue 6

View Front Cover (PDF)

News Items

ICO – new powers to fine
Database to vet dishonest employees
Central database proposed for draft Bill
Banking sector urged to change attitude by FSA
BERR Report released

Articles

The ICO’s new power to fine - the shape of things to come? - Kate Brimsted, Herbert Smith
The changing face of data security law - Stewart Room, Field Fisher Waterhouse
eDiscovery and EU privacy laws - Dan Cooper, Covington & Burling
Safe Harbor, Safe Hands - Mark Watts, Bristows
Book review: Data Protection Law and Practice - Bridget Treacy, Hunton & Williams

April/May 2008
Volume 8, Issue 5

View Front Cover (PDF)

News Items

Government data loss ‘symptomatic of lax standards’
HSBC likely to be fined or loss of 370,000 customers details
BT investigated over Phorm complaints
S.55 DPA custodial sentences “on ice”
Six month time limit set for retaining online search records

Articles

Implications of Ezsias case for subject access: proportionality may apply to searches of data - Gary Brooks, Data Protection Consultant
Industry viewpoint - RFID technology development and data protection - Nigel Clarke, Imation
Is Israeli data protection law “adequate” under Article 25? - Omer Tene, Legal Consultant and Ministry of Justice Committee
Outsourcing - data protection considerations - Annette Orange, McCann FitzGerald

March 2008
Volume 8, Issue 4

View Front Cover (PDF)

News Items

New CCTV code of practice published by ICO
Ban on taking electronic devices outside the workplace
Children’s qualifications online throughout adult life
Government could face £7.5 billion compensation
Solicitor pleads guilty to data protection offence

Articles

Comparing the US and EU approach to employee privacy Miriam Wugmeister and Ann Bevitt, Morrison & Foerster
The ICO gets tough on M&S - Suzanne Rodway, Barclays
Privacy regulation in Australia: current law and proposed changes - Jillian Brewer, Banking and Financial Services Ombudsman
Data retention requirements for communication service providers - Victoria Russell and Joanna Allen, Charles Russell
Less data sharing, more data protection - Ben Winslade, Bristows

January/February 2008
Volume 8, Issue 3

View Front Cover (PDF)

News Items

Justice Committee reports on Commissioner’s powers
Carphone Warehouse issued with ICO Enforcement Notice
British drivers’ details lost in the US
Microsoft’s Big Brother software pending
2008 to be the year of data protection

Articles

Dawn raids, unlimited fines and senior executive accountability - proposed changes to UK data breach laws - Bridget Treacy, Hunton & Williams
Online behavioural advertising guidelines to be issued in the US - Julie O’Neill, Kelley Drye Collier Shannon
Information Commissioner’s new Privacy Impact Assessment Handbook - Louise Townsend, Pinsent Masons
ICO guidance on information sharing - Usha Jagessar, DLA Piper
A look at 2007 from the PDP Editorial Board, and a glimpse of what’s to come in 2008 - PDP Editorial Board Members

December 2007
Volume 8, Issue 2

View Front Cover (PDF)

News Items

25 million affected by ‘deeply disturbing’ HMRC data breach
Online black market for bank details
FCO undertaking after website security failures
Doctors may be fined for losing laptops
ID scheme on rocks?

Articles

Who’s looking at your medical information? - Stephen Hinde, BUPA
Determining ‘personal data’ - a case of believing six impossible things before breakfast? - Kate Brimsted, Herbert Smith
Monitoring staff communications - the latest on privacy rights - Gabriella Wright, employment specialist
Book review, 'Employee Privacy: Guide to US and International Law' - PDP Review Team

October/November 2007
Volume 8, Issue 1

View Front Cover (PDF)

News Items

Newly awarded access to phone records too wide?
German Commissioner criticises Google
Search engines not good practice for recruitment
Blackberry data - ripe for interception?

Articles

Why the Data Protection Act makes good business sense - Suzanne Rodway, Barclays Bank
Israeli data protection law:
constitutional, statutory and regulatory reform - Omer Tene, Ministry of Justice Committee
Current data protection issues for financial institutions - Part 4: the data protection issues that keep the financial services sector awake at night - Bridget Treacy, Hunton & Williams
Ireland - recent developments - Rob Corbet, Arthur Cox

September 2007
Volume 7, Issue 8

View Front Cover (PDF)

News Items

Trojan breach at Monster.com leads to phishing emails
UK launches CCTV code
Microsoft takes lead in online privacy
Bush signs surveillance bill
Consultation on right to consent

Articles

Redefining personal data - can the opinion live up to the hype? - Dan Cooper, Covington & Burling
Current data protection issues for financial institutions - Part 3: data breach – the changing regulatory landscape and its potential impact for financial institutions - Bridget Treacy, Hunton & Williams
IT compliance and IT security - Part 3: How are risks addressed in Europe - Jörg Hladjk, Hunton & Williams
Data protection in corporate transactions - Louise Townsend, Pinsent Masons

July/August 2007
Volume 7, Issue 7

View Front Cover (PDF)

News Items

Art 29 Working Party redefines ‘personal data’
ICO’s Annual Report – executives urged to raise their game
Orange and Littlewoods ‘named and shamed’ by ICO
Consumer privacy issues for outsourced work to India - Privacy problems for Facebook networking phenomenon

Articles

Current data protection issues for financial institutions - Part 2: global businesses and global data flows: how the financial services sector is challenged by global data protection compliance in emerging jurisdictions - Bridget Treacy, Hunton & Williams
Hello! Waves goodbye to 1m+ in celebrity rights legal reversal - Kate Brimsted, Herbert Smith
Record fine for Big Brother in Spain - Victoria Russell and Jose M Saras, Charles Russell

June 2007
Volume 7, Issue 6

View Front Cover (PDF)

News Items

CCTV surveillance is now at extreme proportions
Google - global privacy threat?
Euro countries to share crime data
Bowing to US pressure for passenger data
Big Brother fine confirmed

Articles

Current data protection issues for financial institutions - Part 1: the ‘controller’ v ‘processor’ dilemma - Bridget Treacy, Hunton & Williams
Smith - the importance of file headers - Ashley Roughton, Hogarth Chambers
US privacy developments - Julie O’Neill, Kelley Drye Collier Shannon

April/May 2007
Volume 7, Issue 5

View Front Cover (PDF)

News Items

Damages awarded against email marketer
ICO names and shames
World’s biggest data theft
American Express plans to track consumers
Emails - same as telephone calls for privacy rights

Articles

Durant revisited - will the definition of personal data be changed? - Christine O’Neill, Brodies
Banks put on notice by ICO - Ayesha Bramwell, Shepherd and Wedderburn
Johnson v Medical Defence Union - the final judgment - Ashley Roughton, Hogarth Chambers
IT compliance and IT security - Part 2 - Jörg Hladjk, Hunton & Williams

March 2007
Volume 7, Issue 4

View Front Cover (PDF)

News Items

Bank fined £1m for data security breach
Electronic health data - new regulation
Elle Macpherson privacy breach
ASA upholds complaint over opt-out statement in text message
Bank sues retailer over data loss

Articles

IT compliance and IT security - Part 1: Why is it necessary to comply with legal requirements? - Jörg Hladjk, Hunton & Williams
When disclosing references is not child’s play - Kate Brimsted, Herbert Smith
The secondary use of Council Tax data - Louise Townsend, Pinsent Masons
Data protection developments in Ireland - Rob Corbet, Arthur Cox

January/February 2007
Volume 7, Issue 3

View Front Cover (PDF)

News Items

European Central Bank slammed on data transfers
Paris incensed by sex and medical revelations
Police dubbed ‘absolutely ridiculous’ by Lord Chancellor
10% of workers sacked after drug testing
Irish schools adopt fingerprinting

Articles

International corruption and data protection - Bret Campbell, Cadwalader, Wickersham & Taft
Privacy - the latest issues - Ashley Roughton, Hogarth Chambers
E-Privacy Regulations - the ICO’s revised guidance - Suzanne Rodway, Barclays Bank
US privacy update - Julie O’Neill, Kelley Drye Collier Shannon

December 2006
Volume 7, Issue 2

View Front Cover (PDF)

News Items

UK Commissioner names and shames media companies
Crackdown on private detectives and those who instruct them
The States bugged Diana
More Foxtons complaints - Microsoft brings action under the Electronic Privacy Directive

Articles

Life in surveillance society - new challenges for DPAs and new challenges for business - Bridget Treacy, Hunton & Williams
Is the Data Protection Directive suitable for today’s global economy? - Ayesha Bramwell, Shepherd and Wedderburn
YouTube - the privacy challenges - Stewart Room, Rowe Cohen Solicitors

October / November 2006
Volume 7, Issue 1

View Front Cover (PDF)

News Items

European companies must notify security breaches
Foreign outsourcing to be made easier
Data disappears on one million citizens
Charity databases stolen
US to track negative overseas press
Starbucks loses staff details
Journalists to be prosecuted

Articles

Data security breaches: is Europe heading for US standards of openness? - Kate Brimsted, Herbert Smith
Collecting employee information - Piers Leigh-Pollitt, Osborne Clarke
US privacy law update - Julie O’Neill, Kelley Drye Collier Shannon

September 2006
Volume 6, Issue 8

View Front Cover (PDF)

News Items

CIA unlawfully probes EU citizens banking transactions
UK government to press ahead with data sharing
AOL publishes personal searches
NatWest - inadequate data disposal
AT&T security breach

Articles

The risks of WiFi: Part II - Robin Bynoe, Charles Russell
The role of the data sub-processor - Ayesha Bramwell, Shepherd+ Wedderburn
Data protection and TUPE 2006: what is the state of the law in the UK? - Gabriella Wright

July/August 2006
Volume 6, Issue 7

View Front Cover (PDF)

News Items

Website operator issued with enforcement proceedings
UK to impose prison sentences for data misuse
Spam up in Ireland
DVLA data sales to cease

Articles

The risks of WiFi: Part I - Robin Bynoe, Charles Russell
Transferring customer data after the Green Thumb case - Jimmy Desai, Tarlo Lyons
The costs of non-compliance with data protection law - Louise Townsend & Victoria Southern, Pinsent Masons
The ICO's Annual Report - PDP Team

June 2006
Volume 6, Issue 6

View Front Cover (PDF)

News Items

United States agreement on passenger data overturned
Commissioner pushes for prison sentence for data crime
Privacy case settles for $1.6 million

Articles

Subject access and third party rights - Louise Townsend, Pinsent Masons
Privacy law in Turkey - Mehtap Yoldirim, Cacmak Avukatlik Burosu
Passenger Name Records: the ECJ decision - Hazel Grant, Bird & Bird
US privacy law update - Julie O’Neill, Kelley Drye Collier Shannon

April/May 2006
Volume 6, Issue 5

View Front Cover (PDF)

News Items

Medical data and information on children - key future issues
Johnson - failure to get compensation at trial
Euro citizens must be more careful with data
Guidance on sale of customer databases
Merrill Lynch fined for failure to produce emails

Articles

Are Binding Corporate Rules Ready for 'Prime Time - Dr Mark Watts, Bristows
Access to Personal Information held by a Public Authority Part II - Andrew Sharpe, Charles Russell
Marketing Part IV - Rob Sumroy and Matthew Price, Slaughter and May
Interview with Philippe Renaudière, Head of Data Protection at the European Commission

March 2006
Volume 6, Issue 4

View Front Cover (PDF)

News Items

Durant alleges human rights breach
Gordon Brown hails biometric world
New electoral registration system
Conviction for unlawfully obtaining information
Exchange of EU law enforcement data

Articles

Workers' Subject Access requests - Gabriella Wright, Consultant
Marketing, Part III - Rob Sumroy and Richard J Smith, Slaughter and May
Legitimising Foreign Outsourcing - Sarah Ahmad, Elizabeth Walton and Jonathan Kirsop, Allen & Overy

January/February 2006
Volume 6, Issue 3

View Front Cover (PDF)

News Items

Call for stricter approach to foreign data transfers
De Vere hotel in data blunder
Rich lists pose data risks
IC guidance on employee references
Solicitor's private detective fined
Delay to ID cards
Deaths blamed on data laws

Articles

Access to Personal Information held by a Public Authority Part I - Andrew Sharpe, Charles Russell
Marketing Part II, Data Protection and Direct Marketing - Rob Sumroy, Slaughter and May
Data Retention - Ayesha Bramwell, Shepherd & Wedderburn

December 2005
Volume 6, Issue 2

View Front Cover (PDF)

News Items

Commissioner seeks new and wider powers with telecomms priority
Durant refused leave to appeal
Motorists' information for sale
Commissioner to push data protection audits
Banks to share loans data
CSA demands council tax data
Information Commissioner's Office issues'good practice' notes

Articles

Fair Collection Notices Slim Down - Eduardo Ustaran, Field Fisher Waterhouse
Marketing Part I, Data Protection and Direct Marketing - Rob Sumroy, Slaughter and May
Irish Law - Some Recent Changes - Rob Corbet, Arthur Cox Dublin
Interview with the Australian Privacy Commissioner, Karen Curtis - PDP Team

October/November 2005
Volume 6, Issue 1

View Front Cover (PDF)

News Items

Durant case in breach of European Directive
Johnson v MDU trial imminent
Smith takes case to European Court
Tesco accelerates data harvesting
Banks - outsourcing concerns
Update to DP Directive delayed

Articles

Medical data and privacy, Martin Soames and Usha Jagessar, DLA Piper
Data protection in the insurance industry Part V, Bridget Treacy, Barlow Lyde & Gilbert
Indian law - a semblance of data privacy, Salman Waris, Fox Mandal
Manual data exemption - 2007 is looming, Vinod Bange and Mark Hucks, Addleshaw Goddard

Contents
Volume 5, Issue 8

September 2005

View Front Cover ( PDF )

News Items

Recruitment agency fines £2,000 for non-registration
UK's growing debt mountain blamed on poor data compliance
Accountants in Commissioner’s sights
Omission takes action against Austria and Germany
Electoral register should be 'opt-in'
Estate agents in data breaches
Online casino convicted of spamming

Articles

Is Durant compatible with Linqvist? Stewart Room, Rowe Cohen
Data protection in the insurance industry Part IV, Bridget Treacy, Barlow Lyde & Gilbert
Database right falls at the first! Angus Murray and Piers Strickland, Charles Russell
Interview with the Northern Ireland Commissioner, Data Protection Team
US Privacy Update, Julie O’Neill, Collier Shannon Scott PLLC

Contents
Volume 5, Issue 7

July/August 2005

View Front Cover ( PDF )

News Items

Employment Code released
Commissioner slams identity card register proposals
NCC calls for more rigorous DP law and enforcement
Latest data breach - Mastercard
UK health records - plans for centralised database
India outsourcing security concerns
Consumer credit crises - banks seek amendment to DPA

Articles

The New Employment Practices Code - Piers Leigh-Pollitt, Osborne Clarke
DP in the Insurance Industry Part III - Bridget Treacy, Barlow Lyde Gilbert
The Legality of Recording Telephone Conversations - Jessica Hendrie-Liano and Paul Manwaring, Beachcroft Wansbroughs
US Privacy Update - Julie O'Neill, Collier Shannon Scott PLLC

Contents
Volume 5, Issue 6

June 2005

View Front Cover ( PDF )

News Items

Commissioner to target inadequate privacy notices
Zeta-Jones - privacy breach confirmed by Court of Appeal
Loyalty card regulation
Conditional discharge for selling celebrity data
Calls to regulate transfer of music data over the Internet
Using RFID to track prisoners
France rules on employer's use of biometric data
Communications data retention

Articles

DP in the Insurance Industry Part II - Bridget Treacy, Barlow Lyde Gilbert
The Re-use of Public Sector Information - Anna-Marie Harty and Christopher Rees, Herbert Smith
The European DP Supervisor's First Year - Rosemary Jay, Pinsent Masons
All's Fair in Love, War and Celebrity Exclusives - Kate Brimsted, Herbert Smith

Contents
Volume 5, Issue 5

April/May 2005

View Front Cover ( PDF )

News Items

Political cold-calling unlawful
Video surveillance in the home
UK directors seek anonymity as protection from extremists
Spy mannequins
Irish spam
Binding corporate rules - checklist for applications
Citibank up to its old tricks

Articles

DP in the Insurance Industry Part I - Bridget Treacy, Barlow Lyde & Gilbert
Privacy Best for Elizabeth Jagger - Marcus Turle, Field Fisher Waterhouse
Recent Developments in Data Security Law in US - Lynne Barr & Jacqueline Klosek, Goodwin Procter LLP
Blackstones' Guide to the FOI Act 2000, book review - Stewart Room, Rowe Cohen
US Privacy Update - Julie O'Neill, Collier Shannon Scott PLLC

Contents
Volume 5, Issue 4

March 2005

View Front Cover ( PDF )

News Items

Lloyds' case considers meaning of "data" within DPA 1998
Is political cold-calling lawful?
RFID extended to students
OIC to keep notification receipts
New credit card guidelines
EU working party reports on Member States' notification regimes

Articles

Binding Corporate Rules - making it happen - Eduardo Ustaran, Field Fisher Waterhouse
"Once processed, always processed" - Principle Explained - Ashley Roughton, Hogarth Chambers
Regulated Industries - Requests for Information - Sally Jones, Hammonds
Smith v Lloyds TSB Bank plc Case Report
US Privacy Update - Julie O'Neill, Collier Shannon Scott PLLC

Contents
Volume 5, Issue 3

January/February 2005

View Front Cover ( PDF )

News Items

EC approves "model contract" for data exports
EU committed to beefing up enforcement of data protection
ASA upholds email complaint
Italian telephone directories
Health Minister promotes NHS database
Tesco boycott over "spychip" privacy concerns
New database for Euro crime

Articles

Alternative Standard Clauses for International Data Transfers - Eduardo Ustaran, Field Fisher Waterhouse
Implementing Codes of Conduct - the Novartis Case - Eva Wong, Coudert Brothers
DP Implications of Data Rooms Pt II - Jessica Hendrie-Liano and Emma Bate, Beachcroft Wansbroughs
US Privacy Update - Julie O'Neill, Collier Shannon Scott PLLC

Contents
Volume 5, Issue 2

December 2004

View Front Cover ( PDF )

News Items

Johnson accesses documents under Civil Procedure Rules
ECHR rules covert recording of conversations by police unlawful
Spammer jailed for 9 years
Durant to make FOI request for FSA files
Data breach by Cahoot and Morgan
Queen's speech

Articles

DP Compliance for HR directors Part IV - Piers Leigh-Pollitt, Osborne Clarke
Binding Corporate Rules - making them work - Eduardo Ustaran, Field Fisher Waterhouse
DP Implications of Data Rooms - Jessica Hendrie-Liano and Emma Bate, Beachcroft Wansbroughs
Durant and FOI - Gabriella Wright and Nick Boyd, Charles Russell
US Privacy Update - Julie O'Neill, Collier Shannon Scott PLLC

Contents
Volume 5, Issue 1

October/November 2004

View Front Cover ( PDF )

News Items

"Surveillance society" looms
New French DP law
Guantanamo detainee's family kept in dark
Spam best practice rules
Saudi Arabia bans camera phones

Articles

Data protection for HR directors Part III - Piers Leigh-Pollitt
Email marketing Regulation in Europe - Eduardo Ustaran
French decision on spy software - Eva Wong
Trade union challenge to outsourcing - Gary Brooks
US privacy law update - Cindy Burnes

Contents
Volume 4, Issue 8

September 2004

View Front Cover ( PDF )

News Items

EU investigates UK data laws
Offshore outsourcing attacked by unions
Bichard report - DPA blameless
FOI guidance
Mexicans use chips to foil kidnappers

Articles

Data protection for charities Part V - Sasha Foreman
Data protection for HR directors Part II - Piers Leigh-Pollitt
Developments in privacy law - Alexandra Wenderoth

Contents
Volume 4, Issue 7

July/August 2004

View Front Cover ( PDF )

News Items

EU investigates UK data laws
Fines for scam calls and texts
Sebastian Coe - privacy confusion
Icelandic DNA project unconstitutional
Spy in your email

Articles

Data protection for charities Part IV - >Sasha Foreman
Data protection for HR directors Part I - Piers Leigh-Pollitt
Subject access requests post-Durant - Gabriella Wright
Privacy - positive aspects - Eduardo Ustaran
US privacy update - Cindy Burnes

Contents
Volume 4, Issue 6

June 2004

View Front Cover ( PDF )

News Items

Naomi Campbell wins privacy case
TPS rules extended to business
Identity cards - draft Bill
E-privacy - Commission acts against Member States

Articles

Direct marketing/host mailing - Louise Howe
Data protection for charities Part III - Sasha Foreman
"Data Protection Strategy" - book review - Kate Brimsted
"Data Protection - Practical Guide" - book review - Marcus Turle
Google mail - privacy implications - Cindy Burnes

Contents
Volume 4, Issue 5

April/May 2004

View Front Cover ( PDF )

News Items

Harsh new email rules shock marketers
Medical research threatened by data protection
Working Party considers use of genetic data
Biggest data leak ever
Commissioner outlines corporate plan

Articles

DP and marketing - global organisations - Alison Fortescue
Data protection for charities Part II - Sasha Foreman
Email marketing - new rules - PDP Team
RFID technology and data protection - Eduardo Ustaran

Contents
Volume 4, Issue 4

March 2004

View Front Cover ( PDF )

News Items

Durant causes rethink of DP law
German Commissioner approves binding corporate rules
Identity cards - impact assessment demanded
UK fines US company for sending spam

Articles

Subject access requests - Kate Brimsted
Data protection for charities Part I - Sasha Foreman
Employment Code - workers' health - Neisha Glynternick
Data sharing in the public sector - Jessica Hendrie-Liano and Anne Crofts

Contents
Volume 4, Issue 3

January/February 2004

View Front Cover ( PDF )

News Items

Durant - court dramatically restricts subject access right
Employment health data code published
Guernsey safe for data exports
DPA blamed for Soham deaths
Visitors to the US - fingerprints and photographs

Articles

Websites and data protection - the Lindqvist case - Liz Brownsdon
Ireland - the new data protection law - Rob Corbett and Professor Robert Clark
Privacy Cases 2003 - Monica Bhogal
The US CAN-SPAM Act 2003 - Cindy Burnes

Contents
Volume 4, Issue 2

December 2003

View Front Cover ( PDF )

News Items

New email marketing rules - Commissioner publishes guidance
Zeta-Jones gets £14,600 compensation
Marks and Spencer adopts RFID technology
Diana car crash privacy trial
Carphone Warehouse - adverse ruling

Articles

Privacy & Electronic Communications - Eduardo Ustaran
Solicitors’ firms - data controllers or data processors? - Sue Cullen
Freedom of Information in Practice - Part IV - Cinzia Biondi
The use of photographs for marketing or advertising purposes - Elizabeth Brownsdon

Contents
Volume 4, Issue 1

October/November 2003

View Front Cover ( PDF )

News Items

New email marketing laws
Blunkett publishes new snoopers code
FTSE 100 companies - data compliance poor
Nottingham - data protection prosecution
Marketing email breached ASA code

Articles

The 2003 Privacy Regulations - Advice for businesses in the interim period and beyond - Jessica Hendrie-Liano
How the CAP Code regulates marketing by email - Louise Townsend
Freedom of Information in Practice - Part III - Cinzia Biondi
Communications data - access and retention – Vanessa Barnett

Contents
Volume 3, Issue 8

September 2003

View Front Cover ( PDF )

News Items

Electoral register rules lawful - 192.com fails to overturn law
Commissioner to simplify data protection law
Archer uses DPA for revenge
Constitutional Affairs replaces Lord Chancellor
MP calls for debate on RFID
Equal pay questionnaires - how employers should respond
New Irish data protection law

Articles

Criminal records and data retention - a guide for employers – - Andrew Sharpe & Gabriella Wright
Destination India - Eduardo Ustaran
Freedom of Information in Practice - Part II - Cinzia Biondi
The Commissioner’s Annual Report - Privacy & Data Protection Team

Contents
Volume 3, Issue 7

July/August 2003

View Front Cover ( PDF )

News Items

Intra-company global data transfers to be allowed by the EU
MP's demand privacy law for the UK
Notification scammers making millions
New Nokia phone may breach data protection law
Microsoft targets spam
Canadian airline cookies breach law

Articles

Data Protection Compliance: Making a Virtue out of Necessity - Kate Brimstead of Herbert Smith
The Topless Temptation: Can Editors resist destroying Self-regulation? - Grietje Baars of Bird & Bird
Freedom of Information in Practice: Part I - Cinzia Biondi of Wragge & Co
Subject Access and Third Party Information: The Duty of Confidentiality - Peter Carey of Privacy & Data Protection

Contents
Volume 3, Issue 6

June 2003

View Front Cover ( PDF )

News Items

EU Data Protection Law on track - but better enforcement needed
Citibank - breach of data protection law?
Websites still failing to comply - research
Campaign against transfers of passenger data to the US

Articles

The Offence in Section 55 DPA: Unlawful Obtaining of Personal Data - Catrin Evans of 1 Brick Court Chambers
Data Protection and RFID Systems - Eduardo Ustaran of Berwin Leighton Paisner
Disclosures under the Proceeds of Crime Act 2002 - Andrew Sharpe of Charles Russell
Update on US Privacy Law - Cynthia Burnes of Privacy & Data Protection

Contents
Volume 3, Issue 5

April/May 2003

View Front Cover ( PDF )

News Items

New Data Protection Laws for Email Marketing
Zeta-Jones wins action against Hello!
US citizens want EU-style data protection law
EU airline passenger records to be made available to US

Articles

The New Data Protection Regulations: A comparison with the Directive - Eduardo Ustaran of Berwin Leighton Paisner
Grasping at Nettles: An analysis of the Douglas v Hello! Case - Grietje Baars of Bird & Bird
The Data Retention Code: Will CSP's jump or will they be pushed? - Andrew Sharpe of Charles Russell

Contents
Volume 3, Issue 4

March 2003

View Front Cover ( PDF )

News Items

CCTV images breach man's right to privacy
TUC criticises Commissioner for delay to Employment Codes
Microsoft's Net.Passport radically altered for EU compliance
Lord Archer makes subject access request
£15,000 fine for text message spamming

Articles

Using Telecoms Data for Marketing - Eduardo Ustaran of Berwin Leighton Paisner
Data Protection for Children's Websites - Wendy McAuliffe of Habbo Limited
Customer Databases: Collection, Management & Use - Sarah Gwyndaf-Roberts of Wacks Caller
Argentina: Safe for Data Exports - Maria Veronica Perez Asinari of the University of Namur
US Privacy: Latest Developments - Cindy Burnes

Contents
Volume 3, Issue 3

January/February 2003

View Front Cover ( PDF )

News Items

Privacy Ombudsman to replace Press Complaints Commission
Zeta-Jones action faces possible strike-out
AOL wins damages for email spam
Further delays to employment codes

Articles

New Subject Access Rules - Daniel Pavin of Taylor Wessing
The Problem with Privacy: A Modest Proposal - Lilian Edwards of Edinburgh University
Trans-border flows of Employment Data - Robert Bond of Faegre Benson Hobson Audley LLP
Privacy 2002: A Review of UK Case Law - Grietje Baars of Bird & Bird

Contents
Volume 3, Issue 2

December 2002

View Front Cover ( PDF )

News Items

Naomi Campbell takes Mirror to the Highest Court
US pleads for softer EU data protection laws
Government keen on curbing subject access right

Articles

New Subject Access Rules - Daniel Pavin of Taylor Wessing
The Problem with Privacy: A Modest Proposal - Lilian Edwards of Edinburgh University
Trans-border flows of Employment Data - Robert Bond of Faegre Benson Hobson Audley LLP
Privacy 2002: A Review of UK Case Law - Grietje Baars of Bird & Bird

Contents
Volume 3, Issue 1

October/November 2002

View Front Cover ( PDF )

News Items

Commissioner announces new enforcement strategy
Data protection claim scuppered by prior proceedings
£50,000 fine for spamming by text message
UK - worsening record on personal privacy
French Internet Decision
Unlawful data sharing by Local Authorities
Robertson commences new action against local authority
UK Government responds to European Commission on Data Protection Directive

Articles

Using the Data Protection Act as a weapon in Litigation - Daniel Pavin of Taylor Wessing
Anti-Terrorism - passing information to the authorities - Andrew Sharpe of Charles Russell
The Employment Practices Data Protection Code: Part 3 - Monitoring at Work - Piers Leigh-Pollitt of Osborne Clarke
Case Report
R v IPSWICH CROWN COURT, EX PARTE NTL GROUP LTD (2002)

September 2002
Volume 2, Issue 8

View Front Cover (PDF)

News Items

New Euro data retention rules imminent
Employee survey - dramatic increase in access requests likely
New Japanese spamming law
CCTV evidence inadmissible
Government obfuscation revealed by subject access
Commissioner's Latest Annual Report
Vodafone on location
New Information Commissioner
New interception regulations
UK Shops breach of security
Facial recognition for customer satisfaction?
New Guidance from the Information Commissioner
Monitoring code still not finalised
Thought Police
Commissioners' Annual Conference
Unlawful eavesdropping

Articles

What's the 'Big Deal' with Data Protection? - Cinzia Biondi of Wragge & Co
Privacy duties for the Public Sector - Eduardo Ustaran of Berwin Leighton Paisner
"Sir/Miss, what mark did I get?": Access to education records under the Data Protection Act 1998 - Andrew Sharpe of Charles Russell
Microsoft - Passport to nowhere? – Cindy Burnes of Privacy & Data Protection

July/August 2002
Volume 2, Issue 7

View Front Cover (PDF)

News Items

Europe nears agreement on new Data Protection laws
Most data transfers to the US are unlawful
Inland Revenue Data Blunder
Local Authority's tax collection unlawful
Angus Deayton - centre of privacy debate
Commissioner Swamped by Number of Complaints
Data Scam Prosecution
Government U-Turn on Snooping Regulations
New law to deter document shredding
New Data Protection Amendment Bill
Commission announces review of DP law
Compulsory Identity Cards imminent

Articles

European facelift for E-communications Data Privacy - Rowan Middleton and Dominic Callaghan of Herbert Smith
How to draft data protection opt-out / opt-in clauses for websites - The Privacy & Data Protection Team
The use of Cookies in Europe - a recipe for disaster?
To disclose or not to disclose - when should personal data be handed over to local authorities or law enforcement bodies? Claire Grainger of Pannone & Partners
The opt-in / opt-out debate in the United States - Cindy Burnes of Privacy & Data Protection

June 2002
Volume 2, Issue 6

View Front Cover (PDF)

News Items

Political furore over new email monitoring code
New regulations on electoral role data spell doom for marketers
Vodafone fails to keep control of data processor
Commission report on Safe Harbor
European Parliament votes on new Data Protection Directive
Swedish email law - new
New rules on anonymised data
CCTV scam
Hong Kong monitoring law
Canadian opt-out policies unlawful
BT denies encouraging infidelity

Articles

Email policies - why prevention is better than cure - Dai Davis and Kate Smith of Nabarro Nathanson
The way the Cookie crumbles - Andrew Sharpe of Charles Russell
Data Protection Act Compensation - Just a Cause Célèbre? - Kate Brimsted of Herbert Smith
Email and Internet usage policies in the United States - Cindy Burnes of Privacy & Data Protection

April/May 2002
Volume 2, Issue 5

View Front Cover (PDF)

News Items

Naomi Campbell wins damages in landmark privacy ruling
Employers fear ramifications of French email decision
Employers Code - Part 1 published
Argentina's new data protection law
Italian privacy
Japanese spam
New rules for Information Tribunal
Jail sentence for French cookie use
Al Feyed wins in Tribunal
The Big Brother Awards

Articles

The Sale and Transfer of Customer Databases - Jason Chess and Jamie Radford of Wiggin & Co
Employers' Duty of Disclosure following a Subject Access Request - Nick Hurley of Charles Russell
The Effect of the E-Commerce Regulations on Email Direct Marketing - Eduardo Ustaran of Berwin Leighton Paisner
Anti-Terrorism & Data Retention - The PDP Team
Privacy in the United States - Cindy Burnes

March 2002
Volume 2, Issue 4

View Front Cover (PDF)

News Items

Website investigation shocks companies into compliance
Injunction granted to prevent publication of brothel photographs
A new data protection commissioner for Europe
EU agrees telecoms package
Government published results of data protection consultation

Articles

A Taste of European Spam Regulation - Rowan Middleton of Herbert Smith
Personal Data as Currency - Jo Sanders of Olswang
Data Processors: Model Contracts for Third Country Transfers
The United States Patriot Act - The P&DP Team
US Privacy Update - Cindy Burnes

January/February 2002
Volume 2, Issue 3

View Front Cover (PDF)

News Items

Data Withholding - endorsed by Court of Appeal
Directors prosecuted for breaching data protection law
Canada approved for data transfers
Information Commissioner to resign
Spamming by Sainsbury's
Commissioner to target websites
Commissioner launches 'guide to data protection auditing'

Articles

Cracking the Code - Ian Bourne, Strategic Policy Manager at the Office of the Information Commissioner, analyses the preparation of the code for employers
The new Data Protection Directive - Eduardo Ustaran of Berwin Leighton Paisner examines current developments in the the life of the draft directive
The Right to Privacy - Peter Grundberg of Wilmer Cutler and Pickering analyses recent cases of importance to English privacy law
Case Report
Regina (Robertson) v Wakefield Metropolitan District Council, 2001 - the electoral register case

December 2001
Volume 2, Issue 2

View Front Cover (PDF)

News Items

European Parliament votes to ban the use of Cookies
Electoral register - sale of data illegal
Continued uncertainty over financial services data exports
Ryanair breaches data protection law
P3P - adequate privacy protection?
Delays to Information Act implementation

Articles

Data Protection Act: Enforcement and Sanctions - Rowan Middleton & Christopher Rees of Herbert Smith
Websites: New guidance from the Information Commissioner - Part II of the article by Hazel Grant and Elizabeth Brownsdon of Bird & Bird
The Ultimate Guide to the Data Protection Act 1998-Part V - the fifth in our occasional series of articles looks at the nature and effect of the First Data Protection Principle
ISP's: Data controllers or data processors? - Eduardo Ustaran of Berwin Leighton Paisner
Data retention - Laura Gordon of Boyds examines this controversial issue in the wake of September 11th.
Book Review: Blackstones' Guide to the Freedom of Information Act 2000 - John Wadham, Jonathan Griffiths & Bethan Rigby

October/November 2001
Volume 2, Issue 1

View Front Cover (PDF)

News Items

Data Protection Tribunal forces MI5 to open files
The Privacy threat from Operation Enduring Freedom
Proposal for alternative Data Transfer Contracts
192 monopoly to be ended
Harry Potter author wins privacy complaint
Easyjet Chairman requests SAR from Barclays
Boots breaches law
Commission announces Draft Clauses for Third Country transfers
Recommended data practices for the airline industry
Guidelines published for new Employee Data Code
Bogus data protection services
Privacy & Data Security Summit announced
Telephone Preference Service for the United States

Articles

Human Resources - analysis of the position for HR professionals after 24th October 2001 (Piers Leigh-Pollitt of Osborne Clarke)
Data Transfers to Third Countries - a comparison between safe harbor and model contract clauses (Ben Goodger and Pamela Morey-Nase of Willoughby & Partners)
Freedom of Information - the basics of the Freedom of Information Act 2000 (Cinzia Biondi of Wragge & Co)
The Transitional Provisions - an analysis of the first and second transitional regimes (Rowan Middleton & Christopher Rees of Herbert Smith)
Nurses' Data - the proposals to make nurses' information public (Siobhan Robinson of Pritchard Englefield)

September 2001
Volume 1, Issue 8

News Items

New Data Protection Law Imminent
Text Message Marketing
CBI to develop alternative export contract
Draft Report on Standardisation of Privacy in Europe
High Court challenge to sales of electoral registers by Local Authorities

Articles

The Commissioners Annual Report - a breakdown of the essentials (P&DP Team)
Employee Monitoring - analysis of the views of the Information Commissioner (Valerie Taylor of Consignia Plc)
Hello! - analysis of the latest views on this and related cases (Sarah Thomas of Charles Russell)
Websites Part 1 - analysis of the recent guidance issued by the Information Commissioner (Hazel Grant & Elizabeth Brownsdon of Bird & Bird)
BS7799 - what it is and whether you need it (Richard Mayall of Insight Consulting Ltd)
Product Review: Guide to the Practical Implementation of the DPA - a BSI loose-leaf publication

July/August 2001
Volume 1, Issue 7

News Items

Increase in Personal Privacy Awareness
'Safe harbor' springs a leak
Delay to Criminal Records Bureau
Totnes CCTV Cameras removed
Latest Update on US Privacy Law
Data Protection Insurance
Update on Australian Data Protection Law

Articles

Employee References - is there an exemption from subject access? (Peter Carey)
Corporate Transactions - how is data protection relevant to Due Diligence (Catriona Dove of Linklaters & Alliance)
The Ultimate Guide - The Rights of Individuals (P&DP Team)
E-Privacy & Third Generation Mobile Networks (Eduardo Ustaran of Berwin Leighton Paisner)
Book Review: Media Law & Human Rights - Andrew Nicol QC & Gavin Millar QC

June 2001
Volume 1, Issue 6

Articles

Microsoft adopts Safe Harbor
Medical records 'up for grabs'
Data Protection Absurdities (Peter Carey of P&DP)
Cookies (Sarah Gwyndaf-Roberts of Wacks Caller Solicitors)
The Ultimate Guide - Data Subject Access Requests
e-Privacy - Comments on the draft Communications Data Protection Directive (Eduardo Ustaran of Berwin Leighton Paisner)
The Differences between Directive 95/46/EC and the Data Protection Act 1998 (Bill Milne)
Interview with Microsoft's Director of Corporate Privacy (Cindy Burnes of PDP)

April/May 2001
Volume 1, Issue 5

Articles

Bush criticises EU Privacy Law
OIC delays Snooping Code
Data Processors - an analysis of the legal requirements (Peter Carey of P&DP)
Marketing (Hazel Grant of Bird & Bird Solicitors)
The Ultimate Guide - Notification
e-Privacy - an analysis of the model clauses for data exports (Eduardo Ustaran of Berwin Leighton Paisner)
News Update from the United States (Cindy Burnes of P&DP)

March 2001
Volume 1, Issue 4

Articles

UK - World Leader in CCTV Deployment
ASP's demand data protection consistency
Data Protection and Telecommunications (Peter Carey of P&DP)
Ultimate Guide - Introduction to the Data Protection Act 1998
e-Privacy - Online Profiling (Eduardo Ustaran of Berwin Leighton Paisner)
Book Review - International Privacy, Publicity and Personality Laws - Michael Henry
Privacy Policies - How to Draft one (Cindy Burnes of P&DP)
Police and M15 Processing (David Northmore)
Privacy Legislation in the US (Hammerman & Grossman of Dickstein Shapiros)
Safe Harbor Update

January/February 2001
Volume 1, Issue 3

Articles

Zeta-Jones creates Privacy Law
Data Protection Commissioner changes name
E-mail monitoring (Peter Carey of P&DP)
e-Privacy - an analysis of the need for online consent (Eduardo Ustaran of Berwin Leighton Paisner)
Product Review - CDestroyer
Insurance - an analysis of data protection in the insurance industry (Mary Keeling & Sharon Curd of Cornhill Insurance)
Media Privacy - an analysis of the OK! V Hello! case (Sarah Thomas of Charles Russell)
Website Processing (Emily Wiewiorka of Boyds Solicitors)

November/December 2000
Volume 1, Issue 2

Articles

Data Protection Laws to thwart m-Commerce
Big Brother Privacy Awards 2000
The Adequacy of Data Protection Laws in Australia (Catriona Dove of Linklaters Alliance)
Human Rights in Employment (Cindy Burnes of P&DP)
The 'Safe Harbor' Rules (James Black of P&DP)
Purely Water - an analysis of the Thames Water Undertaking (Peter Carey of P&DP)

October 2000
Volume 1, Issue 1

Articles

Website Processing Unlawful
'Safe Harbor' rules adopted
Third Country Adequacy Focus: Jersey (Wendy Benjamin of Bailhache Labesse)
Monitoring Employee Emails (Peter Carey of P&DP)
Carnivore - Big Brother in the US (Cindy Burnes of P&DP)
A Step into the Future of Law (Eduardo Ustaran of Berwin Leighton Paisner)
The Strange case of Landlordsdata.com

Data Protection -
A Practical Guide
to UK and EU Law

The latest edition of
Peter Carey’s
best selling book on practical
data protection compliance can be purchased

direct from PDP

Journal Testimonials

“I find it a good way of keeping up to date with industry thinking. The “News & Views” section is particularly interesting, as are the major articles on the new DP regime changes.”
Carolyn Webb
Cancer Research UK

“The journal provides insightful, well written articles covering key legislative areas and changes. In my view, it is an essential tool for any data protection practitioner”
Michael Lewis
The Admiral Group

"The journal is fantastic.
– clarity, simplicity, patience
and authority. Cannot ask for
more!"
Jigna Patel
British Safety Council

"The articles are well
researched and written,
and cover relevant topics."
Victoria Ferguson
Dickinson Dees

"I think the format is
excellent and is the
best Data Protection Journal
around and I have been
a subscriber for many years.
Keep up the good work!"
Doreen Broom
Scottish Borders Council

"We have subscribed to
Privacy and Data Protection
journal for several years
now and find it a valuable
source of information to
assist us in our work."
Claire Robson LLM
Kent & Medway NHS Trust

"The journal is excellent as it is informative, very practical and provides in depth updates, all of which are essential when abiding by Data Protection and Privacy Legislation."
Diane Gore
RSPB

“Privacy & Data Protection is an essential tool. The articles are both informative and extremely well written. Along with its sister email update, Compliance News from PDP, I have a summary of legislation changes, compliance updates and enforcement action at my fingertips. They enable me to give timely advice to managers and employees, ensuring we remain compliant. I can’t image working without them.”
David Taylor
Northampton Borough Council

All Journals

Inform a Colleague

ContentsVolume 5, Issue 8

News Items

Articles

ContentsVolume 5, Issue 7

News Items

Articles

ContentsVolume 5, Issue 6

News Items

Articles

ContentsVolume 5, Issue 5

News Items

Articles

ContentsVolume 5, Issue 4

News Items

Articles

ContentsVolume 5, Issue 3

News Items

Articles

ContentsVolume 5, Issue 2

News Items

Articles

ContentsVolume 5, Issue 1

News Items

Articles

ContentsVolume 4, Issue 8

News Items

Articles

ContentsVolume 4, Issue 7

News Items

Articles

ContentsVolume 4, Issue 6

News Items

Articles

ContentsVolume 4, Issue 5

News Items

Articles

ContentsVolume 4, Issue 4

News Items

Articles

ContentsVolume 4, Issue 3

News Items

Articles

ContentsVolume 4, Issue 2

News Items

Articles

ContentsVolume 4, Issue 1

News Items

Articles

ContentsVolume 3, Issue 8

News Items

Articles

ContentsVolume 3, Issue 7

News Items

Articles

ContentsVolume 3, Issue 6

News Items

Articles

ContentsVolume 3, Issue 5

News Items

Articles

ContentsVolume 3, Issue 4

News Items

Articles

ContentsVolume 3, Issue 3

News Items

Articles

ContentsVolume 3, Issue 2

News Items

Articles

ContentsVolume 3, Issue 1

News Items

Articles

Contents
Volume 5, Issue 8

Contents
Volume 5, Issue 7

Contents
Volume 5, Issue 6

Contents
Volume 5, Issue 5

Contents
Volume 5, Issue 4

Contents
Volume 5, Issue 3

Contents
Volume 5, Issue 2

Contents
Volume 5, Issue 1

Contents
Volume 4, Issue 8

Contents
Volume 4, Issue 7

Contents
Volume 4, Issue 6

Contents
Volume 4, Issue 5

Contents
Volume 4, Issue 4

Contents
Volume 4, Issue 3

Contents
Volume 4, Issue 2

Contents
Volume 4, Issue 1

Contents
Volume 3, Issue 8

Contents
Volume 3, Issue 7

Contents
Volume 3, Issue 6

Contents
Volume 3, Issue 5

Contents
Volume 3, Issue 4

Contents
Volume 3, Issue 3

Contents
Volume 3, Issue 2

Contents
Volume 3, Issue 1