Sensitive Personal Data | Matthew Arnold & Baldwin LLP | Giving you a lot more than just law...

Latest news and views tagged sensitive personal data

RSS

Surrey County Council fined £120,000 for serious breaches of Data Protection Act

14 June 2011 | Paul Gershlick

Surrey County Council has been fined £120,000 by the Information Commissioner’s Office – the UK’s data protection regulator - for serious breaches of the Data Protection Act. In the first instance,...

Tags on this discussion: councils data data breach data breaches data controller data loss data protection Data Protection Act 1998 data protection directive data protection laws Data Provider data security data subject DPA ICO Information Commissioner Information Commissioner's Office Information Commissioner’s Office Local Council misuse of data personal data sensitive personal data

Supreme Court rules that police guidelines for indefinite retention of fingerprints and DNA data is unlawful – GC and C v Commissioner of Police for the Metropolis, Supreme Court

7 June 2011 | Paul Gershlick

The Supreme Court has ruled that, following a 2008 European Convention of Human Rights decision, the current guidelines of the Association of Chief Police Officers regarding data retention are unlawful...

Tags on this discussion: Article 8 Court of Appeal data data controller data protection data protection act data protection directive Data Provider data retention data subject database databases declaration ECHR European Convention for Human Rights European Convention on Human Rights European Court of Human Rights High Court HRA human rights Human Rights Act misuse of data personal data privacy right to privacy sensitive personal data Supreme Court

Article 29 Working Party leaves geo-location service providers disorientated after strict data protection opinion about geo-location data

2 June 2011 | Paul Gershlick

The Article 29 Working Party has concluded an opinion on geo-location services on smart mobile devices (such as smart phones and tablet computers) by saying that they are linked to natural persons and...

Tags on this discussion: Article 29 Working Party consent data data controller data protection data protection act data protection directive data protection supervisor Data Provider data subject Directive e-privacy employ employee Employees employer Employers Employment EU EU Directive EU law Europe European Union express geo-location geo-location data geo-location services geolocation geolocation data geolocation services GPS GSM ICO Information Commissioner Information Commissioner's Office informed Internet Internet use Internet user mobile mobile network mobile phone mobile phone network network On-line Online online content personal data privacy privacy policy privacy principles privacy statement RFID right to privacy sensitive personal data smart mobile smartphone social networking social networking site specific tablet tablet computer web web content web site web site content web sites Website website content websites wireless wireless network

Franchisee responsible for wrongful misuse of data by its employee but franchisor rights let down by poor contract wording – MMP v Antal, High Court

25 May 2011 | Paul Gershlick

Antal and MMP entered into a franchise agreement for MMP to operate a recruitment agency as one of Antal’s franchisees. One of MMP’s employees had a relationship with one of the candidates whom she...

Tags on this discussion: agreement agreements breach breach of contract commercial agreement commercial agreements Commercial contract commercial contracts contract contracts data data controller data protection data protection act data protection directive data subject data theft employ employee Employees employer employeres Employment Employment issues franchise agreement franchisee Franchising franchisor fundamental breach material breach misuse of data personal data renounce renunciation repudiatory breach sensitive personal data serious breach test for repudiatory breach unauthorised

Facebook security flaw allows advertisers to see users’ personal data

16 May 2011 | Mark Weston

Facebook has suffered an embarrassing security flaw in which advertisers have been able to see users’ accounts, including profiles, photos, chat and messages. Symantec, the security firm, discovered...

Tags on this discussion: ad ads advert advertisement advertisements advertiser advertisers adverts consent data data controller data protection data protection act data protection directive Data Provider data security data subject disclose DPA Internet Internet security Internet use Internet user misuse of data On-line personal data privacy right to privacy sensitive personal data social networking social networking site unauthorised web web content web postings web site web site content web sites webistes Website website content websites

High Court rules that anonymised data is not exempt from publication even where category involved small number of people – Department of Health v Information Commission, High Court

5 May 2011 | Paul Gershlick

The Department of Health has lost a battle to prevent the disclosure of statistics showing the numbers of annual abortions undertaken under the category of situations where two registered medical practitioners...

Tags on this discussion: data data controller data protection data protection act data protection directive Data Provider data security data subject disclose disclosure DPA exemption exemptions FOIA freedom of information freedom of information act Freedom of Information Act 2000 High Court ICO information Information Commissioner Information Commissioner's Office Information Tribunal request for information sensitive personal data

Information Commissioner investigates Sony PlayStation data theft loss

3 May 2011 | Mark Weston

The Information Commissioner is investigating the circumstances surrounding the loss of millions of people’s personal data, after Sony admitted that its PlayStation Network had faced a hack attack by...

Tags on this discussion: computer misuse Computer Misuse Act data data controller data protection data protection directive Data Provider data security data subject data theft hacker hacking ICO illegal Information Commissioner Information Commissioner's Office Internet Internet use Internet user misuse of data Online online content online gaming personal data sensitive personal data serious serious breach unauthorised unlawful web web content web site web site content web sites Website website content websites

Liverpool NHS signs written promise to Information Commissioner’s Office after failing to have written contract protecting data with business helping with its office move

13 April 2011 | Paul Gershlick

Liverpool NHS has breached the Data Protection Act after the medical history of 31 children and their relatives was lost during an office move. The Information Commissioner’s Office objected to the fact...

Tags on this discussion: contract contracts data data controller data processor data protection data protection act data protection directive Data Provider data security data subject DPA ICO Information Commissioner Information Commissioner's Office misuse of data personal data sensitive personal data undertaking written contract

Hounslow Council fined £70,000 simply for failing to have written contract in place with data processor

3 March 2011 | Paul Gershlick

The Information Commissioner’s Office – the UK’s data protection regulator - has fined two more councils a combined £150,000 following the theft of two laptops containing sensitive personal data...

Tags on this discussion: breach data data controller data processor data protection data protection act data protection directive Data Provider data security data subject data theft DPA fine host hosting ICO Information Commissioner Information Commissioner’s Office misuse of data personal data security breaches sensitive personal data serious breach web site web sites Website websites

NHS Choices website under attack for sharing citizens’ health data with Facebook and Google

30 November 2010 | Paul Gershlick

Tom Watson MP has written to Andrew Lansley, the Health Secretary, asking him to change the policy by which NHS Choices – an NHS website – allows Facebook, Google and others to obtain data about people...

Tags on this discussion: data data controller data protection data protection act Data Provider data security data subject DPA Online online content privacy sensitive personal data social networking site web web site web sites Website website content websites

Page 4 of 5«1 2 345 »

Latest news and views tagged sensitive personal data

Surrey County Council fined £120,000 for serious breaches of Data Protection Act

Supreme Court rules that police guidelines for indefinite retention of fingerprints and DNA data is unlawful – GC and C v Commissioner of Police for the Metropolis, Supreme Court

Article 29 Working Party leaves geo-location service providers disorientated after strict data protection opinion about geo-location data

Franchisee responsible for wrongful misuse of data by its employee but franchisor rights let down by poor contract wording – MMP v Antal, High Court

Facebook security flaw allows advertisers to see users’ personal data

High Court rules that anonymised data is not exempt from publication even where category involved small number of people – Department of Health v Information Commission, High Court

Information Commissioner investigates Sony PlayStation data theft loss

Liverpool NHS signs written promise to Information Commissioner’s Office after failing to have written contract protecting data with business helping with its office move

Hounslow Council fined £70,000 simply for failing to have written contract in place with data processor

NHS Choices website under attack for sharing citizens’ health data with Facebook and Google

Contact us

View latest Upload

Subscribe to Upload

Employer Helpline

News