Fines

Equifax – 12 lessons to learn

As the Data Protection Act 1998 (DPA98) comes to an end, we have a first! The first maximum fine under the old law was issued in September to Equifax Ltd. If you’ve heard any of the Data Protection Leads here at Protecture speak about basic security issues facing organisations, you will have heard us talk …

Equifax – 12 lessons to learn Read More »

Cookie D’oh!

With the news that the changes to ePrivacy law have now been delayed until 2020, now is a good time to evaluate whether your organisation’s practices are already in line with existing electronic privacy law. The ePrivacy Regulation is likely to strengthen the current provisions of PECR in similar ways to which GDPR strengthened previous …

Cookie D’oh! Read More »

What would you say? 20 questions from the ICO

What would you say? 20 questions from the ICO The findings from the ICO’s latest Information Risk reviews highlight the many and varied areas that data protection risk touches upon. We turned the findings into the 20 key questions you should ask yourself about data protection at your organisations. Do you have a clear Data …

What would you say? 20 questions from the ICO Read More »

FPS Goes Live!

This week the Fundraising Preference Service (FPS) was launched by the Fundraising Regulator, in response to concerns about charity marketing, which have been raised over the last couple of years and in anticipation of the more stringent controls on the use of personal data that GDPR will bring. The FPS is an online tool that …

FPS Goes Live! Read More »

Charities face £25k fines for pestering? Maybe, maybe not…

The frontpage headline of The Daily Telegraph today, 4th July 2017 – “Charities face £25k fines for pestering” – risks bluring some key issues. The Fundraising Regulator is about the launch the Fundraising Preference Service (FPS). Rightly they are keen to promote this. But the Fundraising Regulator has no powers to issue fines. That still …

Charities face £25k fines for pestering? Maybe, maybe not… Read More »

Updating consent – implications of the Flybe and Honda fines

On 27th March 2017, the ICO issued Monetary Penalty Notices to Honda and Flybe, having determined that their approaches to confirming customers’ contact details and marketing preferences were not compliant with PECR (The Privacy & Electronic Communications Regulations 2003). Since these fines were issued, there has been some concern about whether this means that verification …

Updating consent – implications of the Flybe and Honda fines Read More »

What the RSPCA and BHF fines mean for you

We now have the full details of the RSPCA and British Heart Foundation fines. They have promoted the Charity Commission and the Fundraising Regulator to issue a joint alert about compliance with data protection law. The actions you should take now: “Immediately cease any activity without explicit consent described and set out by the ICO …

What the RSPCA and BHF fines mean for you Read More »

First fundraising data protection fines – secrecy and sharing at the heart of poor practice

The ICO has published initial details of the fines handed to the Royal Society for the Prevention of Cruelty to Animals (RSPCA) and British Heart Foundation (BHF). The charities’ approach to wealth screening; data / tele-matching and data sharing triggered the fines. The ICO exercised considerable discretion to significantly reducing the fines – in recognition …

First fundraising data protection fines – secrecy and sharing at the heart of poor practice Read More »

Mum’s the Word this Christmas

Christmas requires many secrets to be kept – including the ultimate secret: who is Father Christmas? A similar attempt at hiding identity caused a recent £70,000 fine for a serious breach of the Privacy and Electronic Communication Regulations… A company looked to promote after-show parties for the Parklife Weekender music festival held in Manchester this …

Mum’s the Word this Christmas Read More »

Scroll to Top