Summary: This is an important judgment which effectively returns the law of employers’ vicarious liability for the criminal acts of their employees back to the state it was in prior to the January 2018 High Court decision.  This decision is, in essence, that the employer will not be liable if the criminal act was not…
Continue reading

1. Data Hub The Information Commissioner’s Office (ICO) has launched a data protection web hub (available here) for small and medium enterprises (SMEs). The hub contains: an assessment SMEs and sole traders can use to measure their businesses’ standard of data protection; FAQs related to data protection; hot topics for small businesses; guidance and tools…
Continue reading

What do we already know? The GDPR singles out some types of personal data as likely to be more sensitive, and gives them extra protection. This includes personal data revealing an individual’s racial or ethnic origin, their political opinions, religious or philosophical beliefs or their trade union membership. It also covers genetic data and biometric…
Continue reading

Summary: Did covert surveillance of employees under suspicion of theft breach their Article 8 right to private life? No, held the European Court of Human Rights in López Ribalda and others v Spain available here. Background:  Organisations often want to check systems are being used correctly and employees are behaving properly. Some want to use…
Continue reading

1. Home office employers toolkit The Home Office has published an employer toolkit (available here) which provides information for employers to be able to support EU citizens and their families when applying to the EU settlement scheme during the public test phase. The toolkit includes a leaflet, poster and briefing pack in order to ensure…
Continue reading

1. POST-BREXIT IMMIGRATION POLICY The Home Office has published the White Paper on its post-Brexit immigration policy, available here.  The White Paper sets out the proposed immigration regime that would apply from 1 January 2021, whether the UK leaves the EU with a deal or no deal. The starting point is that EU free movement…
Continue reading

What do we already know? All organisations that process personal data must pay a fee to the UK’s data protection regulator, the Information Commissioner (ICO) unless they are exempt under new UK data protection regulations. The ICO has produced a fee calculator tool (available here) and guidance on the data protection fee, available here. Organisations…
Continue reading

What do we already know? We have been regularly updating you about the new General Data Protection Regulation (GDPR), which was introduced on 25 May 2018 and replaces the EU Data Protection Directive and the Data Protection Act 1998. For further detail see our updates here. What’s new? Just when you thought it was all over(!)…
Continue reading

What do we already know? We have been regularly updating you about the new General Data Protection Regulation (GDPR), which was introduced on 25 May 2018 and replaces the EU Data Protection Directive and the Data Protection Act 1998. For further detail see our updates here. What’s new? Just in case you’re still finalising your…
Continue reading

What do we already know? The new General Data Protection Regulation (GDPR) will be with us very soon, on 25 May 2018.   We have been regularly updating you about this and for further detail see our updates here. What’s new? 1. ICO GDPR guidance for micro-businesses On 12 March 2018, the Information Commissioner’s Office (ICO) launched an…
Continue reading