New UK certification schemes will “raise the bar” of data protection in children’s privacy, age assurance and asset disposal

The Information Commissioner’s Office (ICO) has approved the first UK GDPR certification scheme criteria. Certification was brought in under the UK GDPR as a way to help organisations demonstrate compliance with data protection rules and, in turn inspire trust and confidence in the people who use their products, processes and services. Certification works by providing a framework for organisations to follow, which offers clients and customers assurance that they are adhering to strong standards. Organisations with expertise in a particular area can develop scheme criteria. The ICO has approved the…

Read More

85% of SMEs understand GDPR but legal requirements are still not being met, new survey reveals

A new survey has revealed that 85 percent of the small- to medium-sized businesses (SMEs) in the UK are familiar with the General Data Protection Regulation (GDPR), but more than half are still not cleaning their data and therefore not adhering to the GDPR’s legal requirements.  The survey of 1,110 SMEs, conducted in June by marketing data and insight company REaD Group, also found that only 40 percent hold their customer and prospect data in a CRM or other database: a surprisingly low figure given that businesses need to maintain contact with their…

Read More

ICO announce intention to fine Marriott International more than £99 million

Following an extensive investigation the ICO has issued a notice of its intention to fine Marriott International £99,200,396 for infringements of the General Data Protection Regulation (GDPR). The proposed fine relates to a cyber incident which was notified to the ICO by Marriott in November 2018. A variety of personal data contained in approximately 339 million guest records globally were exposed by the incident, of which around 30 million related to residents of 31 countries in the European Economic Area (EEA). Seven million related to UK residents. It is believed…

Read More

Worldwide Wikipedia edit-a-thon writes unsung women heroes into history

Less than 20% of Wikipedia biographies feature women Hundreds of online activists from more than 20 countries will edit and fill the “glaring gap” of women human rights defenders on the global encyclopaedia People across the world took to the internet on the 19 and 20 May to write women human rights defenders into history as part of Amnesty International’s first worldwide Wikipedia edit-a-thon. BRAVE:Edit, in collaboration with Wikimedia (Wikipedia’s non-profit organisation), will see hundreds of activists from more than 20 countries take to the global encyclopaedia to upload biographies…

Read More

CAP Consults on GDPR Changes on the collection and use of data for marketing

The Committee of Advertising Practice (CAP) is consulting on changes to its rules on the collection and use of data for marketing. These changes are intended to ensure that its rules cover data protection issues most relevant to marketing and that they are aligned with the standards introduced by the General Data Protection Regulation (EU 2016/679, the GDPR). CAP’s regulation of data protection issues is carried out under two sets of rules: section 10 (Database practice) and Appendix 3 (Online behavioural advertising). Section 10 regulates the use of data for…

Read More