DAC Beachcroft updates

GDPR: how accountancy firms can prepare for enhanced regime
DAC Beachcroft
  • IT & Internet
  • United Kingdom
  • November 14 2017

Data protection law is set for a radical overhaul in 2018 and accountancy firms should be preparing now for the changes and the compliance challenges that this will bring. The EU General Data Protection Regulation (GDPR) is an attempt to harmonise data protection laws across Europe. The United Kingdom's recently announced Data Protection Bill (which will replace the existing Data Protection Act) will transpose the GDPR into UK law and will be applicable despite Brexit.

Data Protection Bill 2017: implications for employers on first reading
DAC Beachcroft
  • IT & Internet
  • United Kingdom
  • October 17 2017

The EU General Data Protection Regulation left room for member states to introduce their own laws in certain areas, including in relation to employment law. As such, the government has now released the draft Data Protection Bill, which is the first glimpse of what will eventually evolve into the Data Protection Act 2018. The bill does not contain major surprises from an employer's perspective, but there is increasing emphasis on the importance of policy documents and record keeping.

General Data Protection Regulation – what are the implications for employers as data controllers?
DAC Beachcroft
  • IT & Internet
  • United Kingdom
  • September 26 2017

The government recently issued a statement of intent to publish a new Data Protection Bill. The bill will bring into law the EU General Data Protection Regulation, which takes effect in the United Kingdom in May 2018 and will be the most comprehensive overhaul of data protection law this generation. The new regime for handling personal data has challenges for employers in their capacity as data controllers with increased rights for individuals and enhanced fines for non-compliance.

Cyber-insurance, privacy and data security newsletter – May 2017
DAC Beachcroft
  • IT & Internet
  • United Kingdom
  • May 23 2017

The cyber threat to UK businesses is ever increasing, particularly as hackers develop new variants and methods with which to target businesses. Businesses need to regard cybersecurity as a priority and should have risk management strategies in place to prepare and rehearse for cyber and data breach incidents.

ICO consultation: GDPR consent guidance
DAC Beachcroft
  • IT & Internet
  • United Kingdom
  • May 09 2017

The Information Commissioner's Office consultation on its draft General Data Protection Regulation Consent Guidance recently ended. Of key relevance to the insurance sector is the position that consent should not be a precondition of a service. As an insurance policy cannot be provided without 'explicit consent', the consent will have to be 'conditional'; that is, individuals will have to be told that if they do not consent, they cannot take out the policy.

Subject access requests: four key cases
DAC Beachcroft
  • IT & Internet
  • United Kingdom
  • April 25 2017

Four significant decisions have recently affected how data controllers respond to subject access requests (SARs) under the Data Protection Act 1998. In one case, the court declined to enforce further compliance with a SAR as the data controller had already carried out proportionate searches and properly applied the privilege exemption. In the others, it considered the limits on a data controller's obligations when responding to a SAR.

Current search