Nov 27, 2023 Will the AI Officer see you now? By Edward Machin I’m increasingly asked the following question: who is responsible for AI within my organisation? The short answer is that it shouldn’t...
Nov 20, 2023 You can call me AI: takeaways from the IAPP's DPC23 By Edward Machin Last week saw more than 3,000 people descend on Brussels to attend the IAPP’s Data Protection Congress 2023. Spending the week at a...
Oct 24, 2023 Why life sciences investors should pay attention to innovation in the NHS By David Dowling At a recent presentation, a panel of speakers from a London NHS Trust highlighted the ways in which parts of the NHS are looking to...
Oct 03, 2023 Access all areas: soft skills for handling DSARs By Edward Machin Chuck Palahniuk wrote that the only reason we ask other people about their weekend is so we can tell them about our own weekend. In that...
Sep 22, 2023 UK and U.S. agree "bridge" to allow transatlantic personal data flows By Edward Machin The speed at which artificial intelligence has come to dominate the public consciousness can almost make you wistful for the days when...
Sep 15, 2023 ICO and other DPAs urge social media companies to protect their users from risks associated with third-party data scraping By Rohan Massey The UK Information Commissioner’s Office (ICO) and 11 other data protection and privacy authorities (DPAs) – under the aegis of the...
Jul 31, 2023 What does the EU-US Data Privacy Framework mean for organizations on both sides of the Atlantic? By Rohan Massey Last week I was delighted to be invited to join the She Said Privacy/He Said Security podcast with Jodi Daniels of Red Clover Advisors...
Jul 31, 2023 Lessons from Nigel Farage's SAR wars By Edward Machin It may not be immediately obvious but data protection is at the heart of what has been the biggest story in the UK during the past two...
Jul 24, 2023 Does this judgment mean you should be preparing for distress-based GDPR claims? By Edward Machin The data protection discourse in recent weeks has been dominated by the EU-U.S. Data Privacy Framework coming into force. Organisations...
Jul 14, 2023 Competition authorities may assess GDPR compliance in abuse of dominance cases By James Parkinson Dervla Broderick Greater powers handed to national competition authorities as the interplay between competition law and data protection in digital markets...
Jul 12, 2023 New EU-US Data Privacy Framework – Key takeaways for transatlantic data transfers By Rohan Massey Christopher Foo On 10 July 2023, the European Commission (EC) published its long-awaited decision implementing the EU-US Data Privacy Framework (DPF)....
Jun 27, 2023 Definitely maybe: drafting privacy notices for uncertain situations By Edward Machin Drafting a privacy notice can both be easy and difficult to do. At its core, the notice should (1) tell individuals how and why you will...
Jun 21, 2023 ICO issues new guidance on privacy enhancing technologies By Ropes & Gray On 19 June 2023, the UK Information Commissioner's Office (ICO) launched new guidance in respect of privacy enhancing technologies (PETs)...
Jun 19, 2023 UK Government commits to the establishment of the UK-U.S. data bridge By Christopher Foo On 8 June 2023, the UK Government announced that it had reached a commitment in principle to establish a UK extension to the EU-U.S. Data...
Jun 16, 2023 UK Information Commissioner warns of privacy risks around generative AI By Ropes & Gray The UK Information Commissioner (ICO) was reportedly set to sound a note of caution yesterday, at Politico's Global Tech Day, regarding...
Jun 08, 2023 UK Information Commissioner warns of risks around neurotechnology By Ropes & Gray On 8 June 2023, the UK Information Commissioner (ICO) issued a warning regarding the possibility of discrimination arising in respect of...