Data Protection News Roundup – 30th October 2018

Written Questions

Lord Roberts of Llandudno tabled a question asking what advice HM’s Government gives about the GDPR to churches and voluntary organisations. Lord Ashton of Hyde responded that the ICO has published a range of materials and runs a dedicated phone line for small organisations and charities. Read more here.


Who’s getting it wrong?

British Airways says their investigation into the theft of customers’ data showed that hackers may have stolen the personal information of a further 185,000 customers. Read more here.

The ICO has fined Facebook £500,000 for serious breaches of the Data Protection Act 1998 between 2007 and 2014. Its investigation found that Facebook processed the personal information of users unfairly by allowing app developers access to their information without sufficiently clear and informed consent, and allowing access even if users had not downloaded the app, but were simply ‘friends’ with people who had. Read more here.


Other News

The average value of fines issued by the ICO doubled over the last year to reach £146,000, according to new figures released by City law firm RPC. This is most likely due to a number of major data breaches which have occurred or come to light this year including that of Equifax which received a £500,000 fine and Facebook which also received the maximum £500,000 fine under the Data Protection Act 1998. While we haven’t yet seen any fines under the new data protection laws these are expected to be much higher. Read more here.

Elizabeth Denham, the UK’s Information Commissioner, has been elected Chair of the International Conference of Data Protection and Privacy Commissioners (ICDPPC). On accepting her post she said: “My vision for the ICDPPC is to lead a decade of global data protection. A decade when data protection and privacy by design become mainstream aspects of the digital economy, safeguarding democratic governance and ensuring protection for society’s vulnerable groups, including young people.” Read more here.

UK law firm, SPG Law, has launched a class action against Cathay Pacific Airways after the airline announced that data of about 9.4m passengers had been breached. Read more here. Cathay has lost more than $320m in market value since news of the hack broke and has enlisted Experian to help deal with the fallout of the breach including to monitor whether the information is being misused online. Read more here.

Leave a reply

You must be logged in to post a comment.