Latest blog posts Join us on LinkedIn PwC UK YouTube channel Subscribe to our RSS feed Join us on Facebook Follow PwC on Twitter

18 September 2018

No deal Brexit implications for Data Protection - PwC comments on the latest statement from the Department of Digital, Culture, Media and Sport

By Sue Gold and Richard Collinson The Department of Digital, Culture, Media and Sport (DCMS) published a guidance note on 13 September 2018 on the potential implications for data protection in a ‘no deal’ Brexit scenario. There weren’t any great surprises in the guidance, which concludes that if the UK...

15 February 2018

Personal Data Breach Notification needs incident detection capability confirms EU regulators

The Article 29 Working Party has recently published updated guidance on the Personal Data Breach notification rules in Articles 33 and 34 of the General Data Protection Regulation (GDPR). The original version was published on 3rd October 2017. The most illuminating part of the update concerns the requirement for organisations...

14 December 2017

The maximum fines for undertakings

Are companies exposed to fines at 2% or 4% of their worldwide annual turnover, or are they exposed to fines based on the group worldwide annual turnover, assuming that they are part of a group? Articles 83(4) and (5) talks about ‘an undertaking’, which means a single entity. They do...

01 December 2017

High Court confirms data breach litigation risk

By Kate Macmillan The High Court has confirmed that data breach creates a huge litigation risk for business in the UK. Today the High Court has found an employer vicariously liable for the acts of a rogue employee who posted payroll data relating to almost 100,000 employees on the dark...

29 September 2017

Administrative Court Karlsruhe: Likely GDPR shortfalls do not justify administrative fines

In Germany, a first decision regarding the EU General Data Protection Regulation (GDPR) has been rendered by the Administrative Court of Karlsruhe on 6 July 2017 (10 K 7698/16). The state data protection commissioner of Baden-Württemberg had issued an order against a credit information agency based on the grounds that...

08 September 2017

Will there be a new data protection offence for the UK beyond GDPR?

By Polly Ralph and Sylvia Ng Follow @polly_ralph In early August, the UK Government published its Statement of Intent in relation to a proposed Data Protection Bill. PwC’s initial analysis, which can be found here, notes that the proposed Bill largely reflects the General Data Protection Regulation (GDPR). Notably, the...

29 August 2017

GDPR programme emerging trends

By Stewart Room Follow @StewartRoom The GDPR countdown continues and at PwC we're expecting September to bring a rush of new requests for support, as people come back from their summer holidays fully recharged and ready to tackle their programme to do lists. Over the summer we have been preparing...

07 August 2017

The U.K.'s New Data Protection Bill

By Jamie Witton View Jamie Witton’s profile This morning the Minister of State for Digital, Matt Hancock, released a statement of intent for the UK’s new Data Protection Bill. The Bill has already been through a consulting phase and the Minister has set the Bill’s scheduled implementation date for May...

25 July 2017

Monitoring employees in the modern workplace - has your organisation struck the right balance?

By Tughan Thuraisingam and Shervin Nahid Follow @tughanTT Follow @shervinnahid The modern working environment has embraced the concept of flexible working and has equipped employees with multiple devices such as laptops, tablets, smartphones and wearables. In a battle for market share, employees are also being encouraged to use personal social...

20 July 2017

ICO publishes its first ever international strategy

By Samantha Sayer @SamSPrivacyGuru By Dennis Holmes On 4 July 2017, the UK Information Commissioner’s Office (ICO) published its first ever International Strategy for 2017-2021. The strategy is a clear indication by the ICO that it intends to continue to invest in the protection of individuals’ personal data globally. In...