Data Governance Update: New Data Bill Aims to Shape the Future of the UK Data Landscape

By |2024-10-29T11:02:35+00:00October 29th, 2024|

It’s been a while since we’ve provided an update on data governance and the long awaited DPDI, because since the election there has been little in the way of news. However, last week it was announced that under the new government, DPDI has morphed into the Data Use and Access Bill. Unveiled by the Department for Science, Innovation, and Technology, this bill is positioned to integrate technology and data protection into the economy’s core, fostering economic growth, streamlining public services, and enriching lives. With an expected £10 billion economic boost projected over a decade, the Bill is set to transform how data is used across sectors. The DMA has actively participated in discussions around the Bill, advocating for provisions that [...]

Ensuring Data Accuracy in the Age of AI: A Lesson from AI-Generated Mistakes from across the Pond

By |2024-08-07T09:55:32+00:00August 7th, 2024|

In recent months, significant incidents have highlighted the pitfalls of AI when it comes to maintaining data accuracy in public records. These events serve as a crucial reminder of the importance of data hygiene, particularly for organisations that rely on precise data processing. The Incident: Pregnant Woman Wrongly Accused One notable incident involved a pregnant woman in Detroit who was falsely arrested based on AI-generated evidence. Porcha Woodruff, eight months pregnant at the time, was wrongly identified by an AI system as a suspect in a carjacking case. This led to her wrongful arrest and detention for 11 hours, causing her significant emotional distress and physical complications leading to hospitalisation. This case is part of a broader pattern, with several [...]

A Data Protection Update

By |2024-06-04T08:32:56+00:00June 4th, 2024|

Last week marked the sixth anniversary of the General Data Protection Regulation (GDPR), a landmark in data protection that revolutionised how personal data is handled across Europe. However, as many people reflect on GDPR's impact, the future of data protection regulation in the UK hangs in the balance following the recent mothballing of the Data Protection & Digital Information Bill (DPDI). The Demise of DPDI The Government’s decision to exclude the DPDI from its “wash up” process, a fast-track mechanism for essential legislation before Parliament is dissolved, has led to significant uncertainty. Initially introduced in 2021, the DPDI aimed to modernise the UK's data protection framework. However, it was still navigating the committee stage in the House of Lords when [...]

Top 10 sectors that fail to report data breaches revealed

By |2024-05-24T11:34:57+00:00May 24th, 2024|

As we ‘celebrate’ the 6th birthday of GDPR a new study finds that over half of all data breaches in the UK in 2023 were not reported within the required 72-hour window. The report from Hayes Connor revealed the sectors with the worst track record. These were: Local Government: 51.32% General Business: 49.16% Marketing: 47.50% Justice: 47.06% Regulators: 46.81% Membership Associations: 46.67% Online Technology and Telecoms: 45.37% Media: 45.16% Central Government: 44.57% Retail and Manufacture: 43.94% Failing to report a breach within this timeframe can result in significant fines of up to £17.5 million or 4% of global turnover, whichever is higher. However, in practice, most firms receive minimal penalties. A key finding of the research is that in the [...]

Are we any closer to UK data protection laws?

By |2024-02-27T07:30:25+00:00February 27th, 2024|

Ummmm – in a word, no…. Last week Secretary of State Michelle Donelan brought the Data Protection and Digital Information (DPDI) Bill back into the House of Commons to secure an extension. Its expiration has now been extended by 280 days, setting a new deadline of December 12, 2024. This extension was critical; without it, the bill faced lapsing on March 8, 12 months after its initial presentation. Following a second reading before Christmas, the DPDI Bill will now make its way through the House of Lords. However, the timeframe for this phase remains a subject of much speculation among political and data circles – particularly with an election looming. One of the more formidable tasks confronting the Lords is [...]

What’s going on? Everything you need to know about DPDI in the medium term

By |2023-10-11T07:13:36+00:00October 11th, 2023|

In the realm of data protection legislation, following the recent ICO Data Protection Practitioners’ Conference 2023, it is clear that the fate of the UK's long awaited Data Protection & Digital Information Bill (DPDI) is shrouded in uncertainty. Current Status and Delays As of now, the DPDI faces a challenging path towards becoming law. In his session at the conference, James Snook, the director of policy at the Department for Science, Innovation & Technology indicated that the bill might not receive Royal Assent until mid-2024, with no scheduled debates in Parliament until November 15. The bill is currently at the report stage,  which means it requires further deliberations in both the Commons and the Lords. The Looming General Election Factor [...]

Data Breach Debacle: Electoral Commission’s 300-Day Delay in UK’s Largest Hack in History!

By |2023-08-10T08:42:57+00:00August 10th, 2023|

On the ICO website it clearly states that organisations suffering data breaches must report it within 72 hours of being made aware of the breach. Lets be clear 72 hours. That equates to three days, Not the 300 days it has taken the Electoral Commission to fess up to THE BIGGEST data breach in UK history. For those that have missed the headlines The Electoral Commission reported a breach on 8th August 2023 having discovered in October 2022 that hackers were playing fast and loose with its systems since August 2021. This includes unfettered access to the names and addresses of at least 40 million people registered to vote between 2014 and 2022. Oh dear. The eagle eyed of you [...]

Direct marketing spend at highest level since 2006

By |2023-08-02T10:08:51+00:00August 2nd, 2023|

The ongoing cost-of-living crisis has had a big impact on media spend, the latest IPA Bellwether report reveals. Main media budgets encompassing TV, online, radio and press have tanked, whilst direct marketing, events and sales promotions have soared, reflecting reactive change by UK businesses in response to the economic climate. Sales promotions achieved the highest growth rate (13.4 percent), its biggest uplift in more than two decades of survey data. This indicates that marketers are keen to support their customers by providing them value for money, through offers and deals. Events also performed well, experiencing an increase of 9.3 percent. The growth is attributed to a desire from brands to have closer, more personal relationships with their customers. Underpinning this [...]

Those most likely to donate as a result of Direct Mail

By |2023-07-21T09:18:23+00:00July 21st, 2023|

A new study, The Future of Direct Mail 2023, reinforces the effectiveness of direct mail, with the overwhelming finding that 81% of people engaging with direct mail in some way. Almost two thirds were found to have purchased a physical product as a result of receiving a piece of DM, 43% took advantage of a discount or special offer that was promoted through the mail, 35% applied for a financial product whilst 25% donated to charity as a direct result of a call to action within a mail pack. With charity fundraising suffering as a result of the cost-of-living crisis, understanding the impact of direct mail and who is most likely to respond is incredibly valuable. The report finds that, [...]

Data processing security is key data concern for 2023

By |2023-07-11T13:01:31+00:00July 11th, 2023|

Our latest review of the GDPR enforcements undertaken by the ICO over the past 12 months reveals that data processing security and right of access are the most common infringements since July 2022. Almost a third (30 per cent) of the 30 recorded infringements this year pertained to Article 5, the principles relating to data processing and of these 21 per cent were for Article 5 (f) which specifies that personal data must be processed in a manner that ensures appropriate security. Sixteen per cent contravened Article 15: Right of Access by the data subject and 15 per cent were non-compliant to Article 12 (data transparency) and Article 32 (security of processing). Last year the lion’s share of enforcements (61 [...]

Go to Top