Brexit may (or may not) become a reality on Saturday, but even if the UK Parliament does approve the deal, it will not settle the issue of how data protection laws will operate. “There is an assessment that needs to be done after Brexit on whether we need GDPR 2.0,” said Maarten Stassen, partner in the Brussels office of corporate law firm Crowell and Moring.
The proposed fines against British Airways and Marriott International for breaches GDPR have sent shockwaves through the business community, with a new study showing that UK companies have suddenly started to take cybersecurity much more seriously at board-level with the vast majority seeking to increase their online security budgets.
The Information Commissioner’s Office has joined forces with data protection authorities from around the world in demanding more openness from Facebook and other firms supporting the social media giant’s proposed Libra digital currency, amid fears the scheme could potentially be in breach of privacy laws.
Data security professionals reckon that the first big GDPR fines - proposed by the UK Information Commissioners Office against British Airways and Marriott - will force organisations to sit up and take note, but they will not necessarily trigger a major change in current privacy policies and practices.
The Indian government has set its sights on becoming only the 14th country in the world to secure a data protection "adequacy" deal with the European Commission, which would allow the free flow of data between firms in India and businesses based in EU member states.
The Information Commissioner’s Office has confirmed it is investigating UK police forces’ use of so-called "digital strip searches" for which victims of crime are forced to sign over large amounts of data, potentially spanning years, from their phones.
Home Secretary Sajid Javid has rejected warnings about the potential dangers of facial recognition technology - most recently issued by the Information Commissioner Elizabeth Denham - to back the police as forces across England and Wales step up their trials.
Tens of thousands of companies which use standard contractual clauses to transfer data from the EU to other parts of the world have an anxious five month wait until Europe’s top court rules whether the process is legal or not.