Data Protection and Digital Information (No. 2) Bill

It seems that GoNads screwed up the Tories first attempt to amend the 2018 Data Protection Act which implemented the GDPR in the UK. The current data regulation regime has earned the UK an adequacy ruling from the EU commission. This page documents my thoughts on this current attempt to amend the law.

Read more

Data Protection Act 2022

The government issued a consultation on the Data Protection law; it was commonly felt that they were attempting to allow itself to monetise the personal data of citizens, especially through the NHS data files. Whether after their response, it is felt to be so threatening is another matter. Here are my notes …

Read more

Adequacy

The Commission have issued an adequacy agreement to permit cross border data flows between the EU and the UK. Here are some notes, for an article that I’ll develop/post elsewhere. …

Read more

Privacy, another Brexit benefit

An attack on our rights to privacy? Now they think they’re free from the EU, our security state, encourages the government to roll back those privacy rights that were underwritten by the EU treaties and the Human Rights Act. Here are some links and notes …

Read more

manifestly unfounded or excessive

It seems some organisations have caught up with the ability to refuse a DSAR because the request is manifestly unfounded or excessive. I am not sure where in the GDPR this was permitted, by which I mean, I don’t think it was. Here are some links.

Read more

Data analytics and democracy

Today, privacy campaigners have been circulating tweets about Brittany Kaiser’s document dump proving that Cambridge Analytics and AIG were working as a single entity. This would seem somewhat contrary to what the police and the ICO have been able to find. There’s more to find here and when I find it, I’ll post the stories…

Read more

33 bits

I have just posted a piece on protective technologies and their impact on data protection compliance; I mentioned the 33 bit identifying threshold for a successful jigsaw attack and found that my notes on this were missing. So I made this. …

Read more

GDPR & DPA 2018

I have today returned to the GDPR and the Data Protection Act. I was specifically interested in “legitimate interest” and wrote a blog at linkedin on the subject. Here are my links and notes,

Read more

Decorating the GDPR

Here is an image documenting the six data protection principles embedded in the GDPR. I made this using powerpoint and got the pictures from flickr and later from Unsplash. This page both established a URL and allows me to document the image credits. In 2023, I reworked the Principles graphic, which has its own URL.

Read more

Who broke the internet?

This is going to be a shit storm. The CJEU has ruled that US owned storage is not “adequate protection” under EU data protection laws and that their laws around warrants are not an “effective remedy”.  They have torn up the so-called self-harbour treaty. Here are some links.

Read more

Labour’s Rule Book

This is my Labour Party Rules Page. It contains links to various Labour Party rules, policies and guidelines. This page has a bitly alias https://bit.ly/labourrules . …

Read more