Do’s Know your contract! Firstly, familiarize yourself with your contract. The provisions have been carefully drafted and are there to be used. There is no substitute for reading the contract and no need to shy away from the contract for fear of ‘going contractual’: the contract provides the parties with a structure under which you…
In Part 5 of our six-part series on cloud-based ERP Projects, our specialist team of lawyers look at the key data protection considerations for a cloud-based ERP system. The procurement of Enterprise Resource Planning (ERP) systems is often a high priority and intensive task given the nature of the system and its strategic importance to…
On 16 July, the EU Court of Justice handed down its much anticipated ruling in Data Protection Commissioner v Facebook Ireland Limited, Maximillian Schrems (Case C-311/1) – otherwise known as “Schrems II”. The ruling represents a significant milestone for EU and US data transfers. Under the GDPR, the transfer of personal data to a country outside…
EasyJet announced yesterday a recent cyber attack on its systems which enabled hackers to access the emails and travel information of around 9 million customers, including credit card details in some 2,200 cases. The ICO is currently investigating the breach and it remains to be seen whether any enforcement action will be taken. The incident…
Introduction When we think of key dates in our lives, we think of our birthday, special anniversaries, and, of course, for the data protection specialists among us, the day the GDPR came into force. Although 25th May 2018 may now seem like a distant memory, continued consideration as to how to properly complete data protection…
As we enter 2020, we consider what we expect to be on the data protection agenda this year. More fines from the ICO? In 2019, we saw the ICO issue two intentions to fine Marriott and British Airways in the sums of £99,200,396 and £183,390,000 respectively. Crucially, these are currently only intentions to fine and…
