Recent Posts: Newsletters

REGULATOR FOCUS FOR 2021 The UK Information Commissioner set out the ICO’s plans for 2021. Some may not directly impact the recruitment sector, but it can be useful to be aware of the wider data protection landscape. Plans they describe include: Continuing to support organisations in COVID-19 related data protection […]

REGULATOR ENFORCEMENT ACTION With at least 100 GDPR enforcement actions reported this past quarter, having penalties ranging from 1000 euros to 8,000,000 euros, it is clear that EU and UK regulators take GDPR compliance seriously. Here are just a few examples of recent activities that have led to regulator action […]

REVISED CONTRACTUAL CLAUSES FOR UK GDPR For the time being, the ICO confirms it is still OK to use the EU Standard Contractual Clauses (SCCs) for existing or new international data transfers from the UK. However, they add guidance that certain tweaks are allowed to tailor them specifically for UK […]

ARE YOUR LEGITIMATE INTERESTS LEGIT? Your business is probably processing many types of candidate, client or employee data on the basis of legitimate interests. Remember, this is lawful only if you can demonstrate your fair justification for relying on legitimate interest – have you documented how you evaluated this objectively? […]

LINGERING POST-BREXIT MATTERS Adequacy decision for EU-UK data transfers is yet to be confirmed. It was welcome news when the EU and UK agreed to temporarily allow personal data to continue to flow from the EU to UK for the first few months of 2021, while the EU considers its […]

COSTLY WEBSITE COOKIES MISTAKES Website cookies rules continue to catch out many organisations, so we feel compelled to flag this again. The French regulator issued eyewatering fines of 135 million euros against Google and Amazon and is clamping down on websites that do not comply. Regulators in Belgium, Germany and […]

NEW DATA SHARING GUIDANCE   The ICO (Information Commissioner’s Office) has published its updated Data Sharing Code of Practice. It contains detailed guidance on GDPR considerations when sharing or disclosing personal data, either on a routine or one-off basis. And includes checklists to help organisations make decisions about whether or […]

The start of 2021 brought the long-awaited end of the UK’s transition period for leaving the EU, but the temporary agreements around data flows with EU will come up for review again during springtime, so it’s not over yet! In the meantime, regulators are being active in pursuing complaints from […]