Inherited GDPR breach still leads to a record fine for Marriott

A mere two weeks from the record-breaking British Airways information Commissioner’s Office (“ICO”) £20million fine, Marriott has been handed the second highest General Data Protection Regulation (“GDPR”) penalty at £18million. A striking similarity between the two fines is the steep discount from the original figure (£99.2million) from the ICO’s intention to fine notice dated from…

UK National Data Strategy: a step further away from an adequacy decision under the GDPR?

A drastic and “pro-tech” government policy paper to overhaul the UK’s data protection legislation is believed by the European Commission to be jeopardising future collaboration with the European Union. The government’s new “National Data Strategy”, which vows a profound “transformation” of how data is used across the public sector, is expected to adversely affect the…

Selling online to Consumers? You should read this Preiskel & Co note on the recent EU Court of Justice ruling which confirms the requirement to include details of approved ADR bodies in website terms and conditions

In a recently issued judgment, the EU Court of Justice (“EUCJ”) has confirmed the obligation imposed on traders selling goods or services online to consumers under the ADR Directive (2013/11/EU) (the “ADR Directive”) that requires sellers (which can include Communications Providers) to set out in their website terms and conditions, details of the approved Alternative…