Fines

5 Tips for Incident Management

This article is not a guide about how to handle a notifiable breach. By now, you’re all familiar with the ICO Guidance on that. This piece is about the day to day handling of incidents based on over a decade of first-hand experience about what works, and what doesn’t. Keep it simple. If the breach/incident …

5 Tips for Incident Management Read More »

We all know about PECR, right?

At the Protecture seminar on e-Privacy at the end of November, Rowenna Fielding reminded us that PECR is about more than just consent for electronic direct marketing. I don’t think that Rowenna meant to alarm anyone, just a gentle poke in the ribs to get your online house in order before the new ePrivacy Regulation …

We all know about PECR, right? Read More »

Equifax – 12 lessons to learn

As the Data Protection Act 1998 (DPA98) comes to an end, we have a first! The first maximum fine under the old law was issued in September to Equifax Ltd. If you’ve heard any of the Data Protection Leads here at Protecture speak about basic security issues facing organisations, you will have heard us talk …

Equifax – 12 lessons to learn Read More »

Cookie D’oh!

With the news that the changes to ePrivacy law have now been delayed until 2020, now is a good time to evaluate whether your organisation’s practices are already in line with existing electronic privacy law. The ePrivacy Regulation is likely to strengthen the current provisions of PECR in similar ways to which GDPR strengthened previous …

Cookie D’oh! Read More »

What would you say? 20 questions from the ICO

What would you say? 20 questions from the ICO The findings from the ICO’s latest Information Risk reviews highlight the many and varied areas that data protection risk touches upon. We turned the findings into the 20 key questions you should ask yourself about data protection at your organisations. Do you have a clear Data …

What would you say? 20 questions from the ICO Read More »

FPS Goes Live!

This week the Fundraising Preference Service (FPS) was launched by the Fundraising Regulator, in response to concerns about charity marketing, which have been raised over the last couple of years and in anticipation of the more stringent controls on the use of personal data that GDPR will bring. The FPS is an online tool that …

FPS Goes Live! Read More »

Charities face £25k fines for pestering? Maybe, maybe not…

The frontpage headline of The Daily Telegraph today, 4th July 2017 – “Charities face £25k fines for pestering” – risks bluring some key issues. The Fundraising Regulator is about the launch the Fundraising Preference Service (FPS). Rightly they are keen to promote this. But the Fundraising Regulator has no powers to issue fines. That still …

Charities face £25k fines for pestering? Maybe, maybe not… Read More »

Updating consent – implications of the Flybe and Honda fines

On 27th March 2017, the ICO issued Monetary Penalty Notices to Honda and Flybe, having determined that their approaches to confirming customers’ contact details and marketing preferences were not compliant with PECR (The Privacy & Electronic Communications Regulations 2003). Since these fines were issued, there has been some concern about whether this means that verification …

Updating consent – implications of the Flybe and Honda fines Read More »

What the RSPCA and BHF fines mean for you

We now have the full details of the RSPCA and British Heart Foundation fines. They have promoted the Charity Commission and the Fundraising Regulator to issue a joint alert about compliance with data protection law. The actions you should take now: “Immediately cease any activity without explicit consent described and set out by the ICO …

What the RSPCA and BHF fines mean for you Read More »

Scroll to Top