Privacy Updates
Marriott Hotels breach – UK regulators involved
30 November 2018UK data protection regulator the ICO has confirmed that it has received notification from Marriott Hotels regarding the widely reported hack (said to involve 500M consumers) involving the Starwood reservation system. The ICO says only that it is ‘making enquiries’.
Read moreUber fined £385,000 following mass data breach
29 November 2018The UK Information Commissioner’s Office (ICO) has issued a fine against Uber for £385,000 for failing to protect customers’ personal information during a cyber attack in 2016, that compromised the data of millions of customers and tens of thousands of drivers. The ICO has reported that data security flaws allowed the personal details of about […]
Read moreICO enforces GDPR against Canadian company
28 November 2018In one of the first enforcement steps it took under GDPR, the ICO issued an order in October against a Canadian company, AggregateIQ Data Services (ADS), which required it to delete all personal data held by it on UK residents. The order was issued in the context of the ICO’s ongoing action in relation to […]
Read moreBrexit update
16 November 2018The draft EU withdrawal agreement published on 17 November will (in the –possibly unlikely – event of UK Parliament ratification) preserve the status quo during the Transitional Period (which runs to 2020), during which time there will be negotiation of a longer term arrangement.
Read morePrison sentence for rogue employee
16 November 2018A rogue employee has received a six month prison sentence, using powers under the UK’s Computer Misuse Act 1990. This is the first time that the ICO has used this legislation, and it is noteworthy that the penalty is against the individual, not his employer. The case involved a car repair garage employee accessing a […]
Read more