It seems that GoNads screwed up the Tories first attempt to amend the 2018 Data Protection Act which implemented the GDPR in the UK. The current data regulation regime has earned the UK an adequacy ruling from the EU commission. This page documents my thoughts on this current attempt to amend the law.
Read more
The government issued a consultation on the Data Protection law; it was commonly felt that they were attempting to allow itself to monetise the personal data of citizens, especially through the NHS data files. Whether after their response, it is felt to be so threatening is another matter. Here are my notes …
Read more
The Commission have issued an adequacy agreement to permit cross border data flows between the EU and the UK. Here are some notes, for an article that I’ll develop/post elsewhere. …
Read more
An attack on our rights to privacy? Now they think they’re free from the EU, our security state, encourages the government to roll back those privacy rights that were underwritten by the EU treaties and the Human Rights Act. Here are some links and notes …
Read more
It seems some organisations have caught up with the ability to refuse a DSAR because the request is manifestly unfounded or excessive. I am not sure where in the GDPR this was permitted, by which I mean, I don’t think it was. Here are some links.
Read more
Today, privacy campaigners have been circulating tweets about Brittany Kaiser’s document dump proving that Cambridge Analytics and AIG were working as a single entity. This would seem somewhat contrary to what the police and the ICO have been able to find. There’s more to find here and when I find it, I’ll post the stories…
Read more
I have just posted a piece on protective technologies and their impact on data protection compliance; I mentioned the 33 bit identifying threshold for a successful jigsaw attack and found that my notes on this were missing. So I made this. …
Read more
I was looking for a DSAR template, but couldn’t find anything for free, except the ICO page. So I made one, here are my notes, or will be …
Read more
I have today returned to the GDPR and the Data Protection Act. I was specifically interested in “legitimate interest” and wrote a blog at linkedin on the subject. Here are my links and notes,
Read more
Here is an image documenting the six data protection principles embedded in the GDPR. I made this using powerpoint and got the pictures from flickr and later from Unsplash. This page both established a URL and allows me to document the image credits. In 2023, I reworked the Principles graphic, which has its own URL.
Read more
I am writing an article on Data Protection and cross border controls. These articles were interesting and/or useful.
Read more
This is going to be a shit storm. The CJEU has ruled that US owned storage is not “adequate protection” under EU data protection laws and that their laws around warrants are not an “effective remedy”. They have torn up the so-called self-harbour treaty. Here are some links.
Read more
This is my Labour Party Rules Page. It contains links to various Labour Party rules, policies and guidelines. This page has a bitly alias https://bit.ly/labourrules . …
Read more