Some DP Updates

October 10th, 2017 by Christopher Knight

Time for a few data protection-related updates which don’t merit a full post of their own (or at least, not one I can be bothered to write) but which readers may or may not have missed. Read more »


Section 10 DPA and Youtube videos: Court grants wide perpetual injunction

October 9th, 2017 by Robin Hopkins

Al-Ko Kober Ltd and Paul Jones v Balvinder Sambhi [2017] EWHC 2474 (QB) is, rather improbably, a DPA case about caravan tow-bars and braking systems. A commercial operator used Youtube videos to malign a competitor business and its marketing manager, until the High Court (Mrs Justice Whipple) granted injunctions last week. Read more »


The Data Protection Bill: overview and summary

October 2nd, 2017 by Robin Hopkins

The Data Protection Bill contains some wonderful provisions. For example: “Chapter 2 of this Part applies for the purposes of the applied GDPR as it applies for the purposes of the GDPR. In this Chapter, “the applied Chapter 2” means Chapter 2 of this Part as applied by this Chapter.” And suchlike.

It is just possible that there are some of you who need to get your head around the Bill, but haven’t yet had the time or stomach for it. You are probably thinking “surely some data protection obsessive has read it and summarised it for me somewhere?”. As ever, Panopticon is the proud home of data protection obsessives. Here is a link to an overview of the Bill which I did for Practical Law. Enjoy!

Robin Hopkins @hopkinsrobin


The DP Bill and Delegated Legislation

September 28th, 2017 by Christopher Knight

Data protection developments are not often seen through a constitutional lens, but readers may be interested to glance at the recent post by Oliver Butler from the UK Constitutional Law Blog on concerns about clause 15 of the Data Protection Bill and the delegated legislation powers it provides. There will be much to watch out for as the Bill progresses.

Christopher Knight


The Data Protection Bill: some initial observations

September 18th, 2017 by Robin Hopkins

Anyone who has anything to do with data protection will know that the UK’s Data Protection Bill was published and put before Parliament on Thursday 14 September. But to digest it in full, one needs time, commitment, and coffee. It is not a straightforward read. It seeks to implement the GDPR in full and in Brexit-proof fashion, to plug the gaps that the GDPR requires member states to fill, and also to apply a GDPR-like regime to areas of data processing that are not covered by the GDPR itself. The Bill is of course liable to change in the coming months, but here are some observations and highlights in the meantime. Read more »


Data protection developments: fines, group actions and right to be forgotten

September 12th, 2017 by Robin Hopkins

The GDPR is still eight months away from coming into force, but – as with any such sea-change – it is informing much of our data protection thinking already. In its recent judgment in the Barbulescu case about monitoring employee communications, for example, the European Court of Human Rights cited provisions of the GDPR. Here are some substantive recent developments illustrating the direction of travel in contentious data protection. Read more »