Data Protection News Roundup – 8th September 2020

The Data Guardians’ Managing Director and lead consultant Matthew Lamb is a Certified Data Protection Officer and Cyber Risk Management Practitioner. Get in touch with us to ask about how we can help you with your GDPR and Data Protection Act compliance as well as addressing your Cyber Security issues.  

Info@thedataguardians.co.uk

 

Data Breaches

Northumbria University is still reeling from a cyber-attack last week which forced it to reschedule exams and close its entire campus. The university also tweeted last week that exams had to be cancelled and that it was unable to take calls about clearing, a vital part of the academic calendar in which UK universities and colleges seek to fill places they still have on courses. Read more here.

Private details relating to more than 50,000 letters sent out by banks and local authorities were indexed by Google after a London-based outsourcing firm left its system exposed. Virtual Mail Room, the firm responsible for the data breach, worked for clients including Metro Bank, 14 local councils, the publisher Pearson and insolvency specialist Begbies Traynor. Read more here.

Survivors of historical institutional abuse in Northern Ireland have offered £1,500 to compensate them for a massive data breach in May this year where the office of the Interim Advocate, Brendan McAllister, inadvertently published the personal details of hundreds of victims and survivors in a monthly newsletter. Read more here.

 

Other News

The ICO has announced a 12 month deadline for online firms to become compliant with the new regulation designed to protect children online. The Age Appropriate Design Code or ´Children’s Code` is designed to protect children under the age of 18. The code came into force on 2nd September, triggering the start of a 12 month transition period. Read more here.

Following two years of research and consultation, the ICO has published regulatory guidance on artificial intelligence and data protection. While the guidance is not a statutory code, it seeks to provide a practical framework which advises on best practices regarding data protection compliance when designing or implementing AI systems, as viewed by the ICO. Read more here.

Don’t miss another news roundup, subscribe to our mailing list and receive a monthly email with essential data protection news and insights. Subscribe here.

Leave a reply

You must be logged in to post a comment.