Data Protection News Roundup – 16th March 2021

The Data Guardians’ Managing Director and lead consultant Matthew Lamb is a Certified Data Protection Officer and Cyber Risk Management Practitioner. Get in touch with us to ask about how we can help you with your GDPR and Data Protection Act compliance as well as addressing your Cyber Security issues.



The digital secretary, Oliver Dowden, has signalled that the UK will explore ways to diverge from the GDPR to find a “sweet spot” that will encourage growth in the post-Covid economic recovery. Although he said the UK won’t be seeking to water down data protection standards, the government will explore ways to tweak the rules where there might be opportunities to encourage economic growth. Read more here.


Data Breaches

A hack of up to 150,000 security cameras installed in schools, hospitals and businesses is being investigated by the firm that makes them. Hackers claim to have breached Verkada, a security company that provides cameras to companies, prisons, schools, hospitals and clinics. The attack was reportedly unsophisticated, involving use of a “super admin” account to gain access to Verkada. Read more here.

The names of more than 500 business leaders canvassed for suggestions of worthy recipients of 2022 new year honours were inadvertently leaked as a result of a mistake by the Department for Business, Energy and Industrial Strategy. Instead of using the bcc option which disguises the recipients of a bulk email, the department used the cc option. Read more here.

Following the global Microsoft Exchange flaw which affected around 7,000 servers, the NCSC estimates that only half have been secured. The agency said it was “vital” that all affected businesses took action to secure their email servers. Read more here.

A college in Birmingham has closed all its campuses to students for a week following a “major” ransomware cyber attack that disabled its core IT systems. Read more here.


Other News

The ICO is investigating claims that NHS test and trace call centre staff used their personal email addresses to send case information for review because the internal systems made it unmanageable for details to be shared securely via their online platform. Read more here.

The ICO has published new guidance on the use of personal data in political campaigning. The guidance has been updated to reflect changes in legislation as well as new technologies and campaigning methods. Read it here.

Nurseries and childminders are being warned of the threat of cyber-attacks, in guidance from the government’s National Cyber Security Centre (NCSC). It is the first time that the agency has given guidance to a sector caring for such young children. Read more here.

Don’t miss another news roundup, subscribe to our mailing list and receive a monthly email with essential data protection news and insights. Subscribe here.

Leave a reply

You must be logged in to post a comment.