The GDPR’s ‘Data Protection By Design and Default’

The General Data Protection Regulation 2016/679 (‘GDPR’) has introduced the concept of ‘Data Protection by Design and Default’ (‘DPbDD’) into the data protection framework.[1] ‘Privacy by Design’ is not a new concept; it was formulated by the Information and Privacy Commissioner of Ontario in the 1990’s and is based on seven foundational principles[2]. Whilst Article […]

R (Bridges) v Chief Constable of South Wales Police and Others [2019] EWHC 2341 (Admin): A summary (use of facial recognition technology (UK))

R (Bridges) v Chief Constable of South Wales Police and Others [2019] EWHC 2341 (Admin) To read the judgment click here. The High Court turned down an application for judicial review of the decision by South Wales Police to use automated facial recognition technology in a pilot project. The project involved the capture of digital […]

Lloyd v Google LLC [2019] EWCA Civ 1599: A summary (Group Litigation in UK Data Cases)

Lloyd v Google LLC [2019] EWCA Civ 1599 To read the judgment click here. The Court of Appeal has overturned the High Court’s decision, which had refused permission for Mr Richard Lloyd to serve proceedings on Google for the alleged secret collection of browser-generated information from Apple iPhone users. Mr Lloyd had brought the claim […]

ICO Annual Report 2018/2019: A summary

The Information Commissioner’s Office (ICO) published its 2018/2019 Annual Report on 8 July 2019. Here is a short summary: The number of enquiries the ICO received increased by 66% to just under half a million. The number of data protection complaints almost doubled compared with the previous year. Subject Access Requests made up the largest […]