It seems that GoNads screwed up the Tories first attempt to amend the 2018 Data Protection Act which implemented the GDPR in the UK. The current data regulation regime has earned the UK an adequacy ruling from the EU commission. This page documents my thoughts on this current attempt to amend the law.
Read moreData Protection Act 2022
The government issued a consultation on the Data Protection law; it was commonly felt that they were attempting to allow itself to monetise the personal data of citizens, especially through the NHS data files. Whether after their response, it is felt to be so threatening is another matter. Here are my notes …
Read moreAdequacy
The Commission have issued an adequacy agreement to permit cross border data flows between the EU and the UK. Here are some notes, for an article that I’ll develop/post elsewhere. …
Read morePrivacy, another Brexit benefit
An attack on our rights to privacy? Now they think they’re free from the EU, our security state, encourages the government to roll back those privacy rights that were underwritten by the EU treaties and the Human Rights Act. Here are some links and notes …
Read moremanifestly unfounded or excessive
It seems some organisations have caught up with the ability to refuse a DSAR because the request is manifestly unfounded or excessive. I am not sure where in the GDPR this was permitted, by which I mean, I don’t think it was. Here are some links.
Read moreData analytics and democracy
Today, privacy campaigners have been circulating tweets about Brittany Kaiser’s document dump proving that Cambridge Analytics and AIG were working as a single entity. This would seem somewhat contrary to what the police and the ICO have been able to find. There’s more to find here and when I find it, I’ll post the stories…
Read more33 bits
I have just posted a piece on protective technologies and their impact on data protection compliance; I mentioned the 33 bit identifying threshold for a successful jigsaw attack and found that my notes on this were missing. So I made this. …
Read moreData Subject Access Requests
I was looking for a DSAR template, but couldn’t find anything for free, except the ICO page. So I made one, here are my notes, or will be …
Read moreGDPR & DPA 2018
I have today returned to the GDPR and the Data Protection Act. I was specifically interested in “legitimate interest” and wrote a blog at linkedin on the subject. Here are my links and notes,
Read moreDecorating the GDPR
Here is an image documenting the six data protection principles embedded in the GDPR. I made this using powerpoint and got the pictures from flickr and later from Unsplash. This page both established a URL and allows me to document the image credits. In 2023, I reworked the Principles graphic, which has its own URL.
Read moreAfter Schrems vs Facebook
I am writing an article on Data Protection and cross border controls. These articles were interesting and/or useful.
Read moreWho broke the internet?
This is going to be a shit storm. The CJEU has ruled that US owned storage is not “adequate protection” under EU data protection laws and that their laws around warrants are not an “effective remedy”. They have torn up the so-called self-harbour treaty. Here are some links.
Read moreLabour’s Rule Book
This is my Labour Party Rules Page. It contains links to various Labour Party rules, policies and guidelines. This page has a bitly alias https://bit.ly/labourrules . …
Read more