Data protection and privacy insights
Insights on developments in data protection and privacy, regulatory enforcement trends, court cases and law reform, from PwC UK and PwC Legal.
January 24, 2019
In Part Two of our blog series on Artificial Intelligence, Emily Sheen and Ningxin Xie discuss some of the main requirements of businesses who utilise artificial intelligence in practice, and look at the key trends that are being discussed around the use of AI technologies.
January 18, 2019
The advent of the GDPR means that organisations will need to make increased efforts to deal with specific threats and this includes those posed by social engineering attacks. In this blog post, Richard Hall explores the different types of social engineering attacks and what you can do to assist in reducing those risks as part of your compliance efforts.
January 16, 2019
In this blog post, Polly Ralph and Olivia Wint discuss contingency planning to maintain EU - UK data flows in the context of a no deal brexit scenario.
January 08, 2019
By Simon Davis, Senior Associate. PECR (Amendment) Regulations 2018 came into effect in the UK on 17 December 2018. Simon Davis discusses what this means for organisations and for individuals of influence within these.
January 07, 2019
In this blog post, Emily Sheen and Ningxin Xie outline some of the key considerations which organisations should be taking into account when developing and/or deploying AI technologies, especially if these technologies carry out automated decision-making services that fall under the scope of the GDPR, to maintain public trust in a product or service.
December 12, 2018
When an organisation discovers a personal data breach it is hard not to catastrophize. It is well known and understood that the GDPR has introduced a mandatory breach reporting requirement in many circumstances, and with reporting comes regulatory, and often, public scrutiny.
November 23, 2018
For most organisations acting as data processors, the GDPR's potential 4% fine of global group turnover fundamentally changed the risk profile of their commercial relationships with clients, customers or suppliers, causing them to be increasingly resistant to accepting uncapped and unlimited liability for losses. Sarim Shaikh discusses the issues that are often overlooked by organisations when negotiating these liability provisions.
November 16, 2018
ePrivacy, enforcement and a new breed of privacy advocate. Samantha Sayers looks into the current and future privacy landscape, several months into the GDPR.
November 09, 2018
In the first part of this blog we identified two of the key trends for businesses to consider in the post GDPR live environment. In this second blog post, Davide Borelli and Ningxin Xie explore two more key trends that your business should consider in the post GDPR live environment.
November 01, 2018
In the GDPR-‘live’ environment, businesses are busy operationalising their privacy compliance programmes in this new business as usual world of transparency, accountability and user rights. Brian Davidson discusses some common themes and challenges facing businesses and their DPOs.
October 30, 2018
The GDPR was born with the aim to be technologically neutral. Mark Hendry and Laia Bertran Manye discuss how this makes the accountability principle seem very broad and filled with practical challenges, but operationalising accountability is possible.
October 19, 2018
Stewart Room discusses the importance of businesses being able to deliver data protection outcomes in the technology and data layers of business, as viewed through the lens of accountability, and how to get around to doing it.
October 17, 2018
May 25 2018 has come and gone. The General Data Protection Regulation (“GDPR”) has irretrievably changed the way in which we approach and deal with personal data. PwC's Davide Borelli and Ningxin Xie have identified some key trends for business to consider in the post GDPR live environment.
October 03, 2018
Stewart Room explains how the GDPR brings more than just legal change.
October 03, 2018
The consultation process is underway for the ICO's 'Sandbox', until 12 October 2018. Sean Milford discusses the proposal for a 'Sandbox', key themes, what's next and possible implications.
September 18, 2018
The DCMS published a guidance note on 13 September 2018 on the potential data protection implications in a ‘no deal’ Brexit. Sue Gold and Richard Collinson cover the content of the guidance, current data protection legislation, transfers to third countries, and what you should be doing now.
February 15, 2018
The Article 29 Working Party has recently published updated guidance on the Personal Data Breach notification rules in Articles 33 and 34 of the General...
December 14, 2017
Are companies exposed to fines at 2% or 4% of their worldwide annual turnover, or are they exposed to fines based on the group worldwide...
December 01, 2017
By Kate Macmillan The High Court has confirmed that data breach creates a huge litigation risk for business in the UK. Today the High Court...
September 29, 2017
In Germany, a first decision regarding the EU General Data Protection Regulation (GDPR) has been rendered by the Administrative Court of Karlsruhe on 6 July...
