As the GDPR hurtles towards us, our picture of how it will play out in practice gradually becomes clearer, aided by case studies of practices elsewhere, and guidance from regulators such as the ICO. Here are some observations on two important aspects of life under the GDPR. Continue reading →

So, data protection fans, what do you think of this?

“… data protection laws reach into and are employed in rather surprising circumstances. It generates, not just for the uninformed bystander, a certain intellectual unease as to the reasonable use and function of data protection rules.” Continue reading →

Suppose you publish a statement about me to which I object. Can I sue you for both defamation and data protection breaches based on the same set of facts? Or should that sort of ‘doubling up’ be prohibited as a disproportionate attempt to achieve the same objective in different ways? Continue reading →

FOIA remains a potent tool for enhancing transparency on issues of great public importance. Two recent decisions – concerning the Chilcot Inquiry and the post-prime ministerial activities of Tony Blair – are good current illustrations. Continue reading →

Is it plausible that information over a century old could be withheld under FOIA on the grounds of national security and/or endangerment of health and safety? The answer is evidently ‘yes’. That was the outcome of a request for information on informants in the Jack the Ripper investigations (see Marriott v IC EA/2010/0183). A request for information on police informants involved in Irish secret societies over the period 1890-1910 has met the same outcome. Continue reading →

Automatic Number Plate Recognition allows a vehicle to be tracked to its registered keeper. It is clearly a form of identifier linking a car and its movements with a specific individual. It is that person’s personal data. But could it be the personal data of other people as well – such as passengers in the car? Continue reading →