Data (Use and Access) Act 2025 receives Royal Assent
On 19th May 2025, the Data (Use and Access) Act received Royal Assent, meaning that the updates to UK GDPR and DPA2018 (collectively referred to in … Read more
PECR
Marketing consent: what you can and can’t do
When GDPR came into force (in 2018) it introduced a new set of rules around what constitutes consent as the lawful basis for processing. Specifically, … Read more
£120k fines highlight need for the right consents and clear privacy statements
In three separate but connected cases the ICO has fined Leave.EU £60k and Eldon Insurance £60k for Privacy and Electronic Communications Regulations (PECR) offences relating … Read more
Personal director liability under PECR introduced
On 17th December 2o18 a new PECR amendment regulation (Privacy and Electronic Communications (Amendment) Regulations 2018) came into force. The updated regulation extends the powers … Read more
ICO issues £200k fine for unsolicited text messages without valid consent
The Information Commissioner’s Office (ICO) has issued a £200,000 fine to Tax Return Limited (“TRL”) for sending out 14.8m unsolicited marketing text messages (which generated … Read more
ICO issues fine for email marketing breach
The ICO has issued a fine to Morrison Supermarkets for sending marketing consent emails to over 130k email addresses where the subjects had previously opted-out … Read more
When B2B data is personal data and what that means with the GDPR
Data protection in the UK is changing thanks to the European General Data Protection Regulation (the GDPR). Just like the Data Protection Act 1998 the … Read more