GDPR, Privacy & Cyber news from around the world as it happens.

What started as an internal knowledge base of news articles to ensure our trainers remain on top of the latest industry developments, is now a free resource for everyone.

3 ways to stay up-to-date

  • Online

    Online

    View the latest news
    online or search the
    archive below

    Get RSS feed
Filter by:
  • Data Protection
  • Security
  • Audience
  • Publisher
Sort by:
Hide advanced filters

The Guardian

Zoom will not include end-to-end encryption to free calls

Vice

Zoom facing lawsuit for sharing data with Facebook

EDPS

Wojciech Wiewiórowski calls for EU digital solidarity against COVID-19

IAPP

Will complying with India's privacy law mean violating GDPR?

The Guardian

Will being healthy and living longer be worth the loss of privacy?

IAPP

Why placing a price tag on personal data may harm consumer privacy

The Register

WHO: Track and limit movement of COVID-19 coronavirus carriers

IAPP

White Paper – 2020 Global Legislative Predictions

Thomas Le Bonniec

Whistleblower alerts DPAs to Apple's Siri - she's still listening in

IAPP

When is AI Personal Information?

IAPP

What lives between data privacy and data governance? Better compliance

Raconteur

What is the future of authentication?

Econsultancy

What have we learned about GDPRs impact on marketing so far?

IAPP

What 'Schrems II' means for companies that rely on derogations

The Register

Wearing masks in public interferes with Met Police facial recognition tech

BuzzFeed News

VPN And Ad-Blocking Apps secretly collected data from millions of users

The Guardian

Vote Leave AI firm awarded novel coronavirus contract

Infosecurity Magazine

Virgin Media could face hefty compensation costs over data breach

Harvard Business Review

Use your customer data to help them

The Register

UK surveillance laws tightened

The Guardian

UK police's facial recognition technology breaches human rights laws

HM Government

UK outlines plans for data adequacy EU negotiations

UK Government

UK outlines framework for adequacy discussions

The Guardian

UK makes impossible Europol database demands in EU talks

Matt Hancock on Twitter

UK Gov: Coronavirus response exempt from GDPR

The Telegraph

UK drops NHS contact-tracing app for Apple-Google model

The Guardian

UK broke the law cooperating with US over two alleged Isis killers

EDPB

Twenty-third EDPB Plenary (held remotely)

EDPB

Twenty-sixth EDPB Plenary (held remotely)

EDPB

Twenty-forth EDPB Plenary (held remotely)

Gizmondo

Tinder new safety feature shares user data

Infosecurity Magazine

Thousands of UK Consultants Date Leaded Online

EDPB

Thirty-second EDPB Plenary (held remotely)

EDPB

Thirty-first EDPB Plenary (held remotely)

EDPB

Thirty-fifth EDPB Plenary

The CNIL

The right to be forgotten FAQs

11KBW Panopticon Blog

The Court of Justice of the European Union is always watching

11KBW Panopticon Blog

The alignment of defamation claims and data protection law

The Institution of Engineering and Technology

Tech companies reject controversial facial-recognition startup

IAPP

Talking tech: Handling human names

Sweedish DPA

Swedish DPA imposes a €7 administrative fine on Google

IAPP

Swedish DPA fines Google in RTBF case

FRA

Survey into Europeans views about online personal data

11KBW Panopticon Blog

Supreme court ruling on international data transfers

Open Rights Group

Submission to ICO for consultation on Right of Access Guidance

ICO

Statement: Insolvency practitioners are to be responsible when dealing with personal data

ICO

Statement about online harms white paper consultation

Infosecurity Magazine

Sports retailer leaks 123M records

ZDNet

Smart speakers accidentally record you up to 19 times per day

ICO

Six data protection steps for businesses

IAPP

Setting data retention timelines

Scottish Government

Scottish Parliament backs oversight of police use of biometric data

NOYB

Schrems planing challenge of Facebook data transfers in August

The Guardian

Review finds Cabinet Office risks additional data breaches

EDPS

Result of investigation into use of Microsoft solutions by EU institutions

Ars Technica

Researcher ranks internet browsers on privacy

ICO

Regulators to ensure online services work for consumers and businesses

The Verge

Reddit joins Twitter to fight US Visa demands for online handles

BBC News

Reddit and LinkedIn to cease copying iPhone clipboards

IAPP

Reconciling US export control law and Swedish privacy law

EDPS

Quantum Computing and Cryptography

Open Rights Group

Public kept in the dark over data-driven political campaigning

The Guardian

Private companies tracking council web visitors on benefits and disability

Future of Privacy Forum

Privacy Shield participation up 30% in EU

Privacy Shield news roundup

Privacy Shield news following last weeks CJEU ruling

IAPP

Privacy professionals play an essential role in preventing discrimination

The Guardian

Privacy groups concerned over social distancing tracking

ICO

Privacy expectations of global teleconference providers

ICO

Privacy considerations when combatting COVID-19 with personal data

IAPP

Privacy and racial justice: Regulating facial recognition technology

Reuters

Privacy action between Meghan and tabloids goes to London High Court

Reuters

Pope, tech companies, call for facial recognition regulation

Digit

Police in Scotland to begin controversial roll-out of Cyber-Kiosk devices

The Guardian

Police in need of guidance to use data and AI tech

The Guardian

Police breached drink-driver rights by retaining his DNA

Express & Star

Parish council pays resident £2500 for posting his details on Facebook

BBC News

Organisers of RideLondon apologise following data breach

Open Rights Group

ORG analysis of the Digital Technology and Trust report

11KBW Panopticon Blog

Oral processing under DPA98

TechCrunch

Oracle BlueKai: Web-tracking data spilled online

NOYB

NOYB alleges Google tracking violates GDPR

NHSX

NHSX contract-tracing DPIA

ICO

NHSX contact tracing statement plus Google & Apple initiative opinion

UK Government

NHS to use data to target Covid-19 hot spots

The Guardian

NHS in dispute with Apple and Google over contact-tracing

UKAuthority

NHS Digital expands vulnerable children data sharing system

Healthcare IT News

NHS Digital data opt-out scheme in England delayed

The Guardian

New year honours recipients exposed by Government

IAPP

New working group aims to tackle adtech

EDPB

New EDPB COVID-19 outbreak data protection statement

Royal College of Policing

New Code of Practice for Law Enforcement Data Service

BBC News

Network Rail wi-fi provider data breach

okta

Most people reluctant to give up data

Reuters

Mobile operators sharing data in Europe to coronavirus virus

The Guardian

Mobile industry considers tracking users globally

The Telegraph

Microsoft’s defends centralised NHS data centre amid privacy concerns

ZDNet

Microsoft agrees not to "use your data for advertising or profiling"

The Times

Met Police remove almost 1,000 names from gangs matrix

Infosecurity Magazine

Marriott discovers new data breach affecting 5.2m guests

IAPP

Making responsibly sourced data the rule

BBC News

Mail published Meghan letter to 'satisfy curiosity'

The Guardian

London Met police begin use of live facial recognition technology

Open Rights Group

Listen to your members over data rights

IAPP

Leverage your privacy program to manage brand reputation risks

Infosecurity Magazine

Leaked Trade Report Details Outline UK-US Data Transfer Plans

BBC News

Keir Starmer campaign team accused of data breach

BBC News

Just Park data breach affects thousands

The Guardian

Jeff Bezos phone hacked by Saudi crown prince

IAPP

It's important to be mindful of digital footprints during the pandemic

IAPP

Is my dataset anonymized? A primer

Irish DPC

Irish DPC publishes annual report

Irish DPC

Irish DPC publishes 2018 to 2020 GDPR regulatory activities report

TechCrunch

Irish DPC probes Apple after complaint

UK Government

Investigatory Powers Commissioner to oversee UK-US data agreement

The Register

Interserve data breach affects 100,000 employees

Linklaters

In GDPR vs US discovery, non-US entities can’t avoid discovery

Open Rights Group

Immigration Bill means more surveillance for EU migrants

ICO

ICO: what to watch out for when using video conferencing apps

ICO

ICO statement on Schremms II case

ICO

ICO Sandbox after six: blending privacy with innovation

ICO

ICO reveiwing NHSX contract tracing app DPIA

Privacy & Information Security Law Blog

ICO publishes first two data protection sandbox pilot reports

ICO

ICO publishes findings on mobile phone extraction by police

ICO

ICO outlines new data protection priorities during COVID-19 and beyond

Pinsent Masons

ICO issues guidance on explaining AI decisions

ICO

ICO issues COVID-19 workplace testing guidelines

ICO

ICO guidance to businesses collecting personal data for contact tracing

ICO

ICO Blog: Adtech - the reform of real-time bidding has begun and is set to continue

IAPP

How to manage privacy risk under both the GDPR and CCPA

Reuters

How much is your data worth?

TechCrunch

How 'Have I Been Pwned' became keeper of the biggest data breaches?

The Register

Housing association data breach

Infosecurity Magazine

Home Office breached GDPR 100 times

BBC News

HIA investigation reveals data breach as a 'procedural error'

IAPP

Guidance notes for responding to ‘Schrems II’

IAPP

Guidance for a cloud migration PIA

BBC News

Grandma ordered to remove Facebook photos under GDPR

Global Privacy Assembly

GPA publish latest newsletter

The Register

Government not currently planning to share UK patient data

The Guardian

Government admits NHS test and trace system breaks privacy law

Bloomberg

Google RTBF fine overturned by French court

Reuters

Google offers EU data guarantee over Fitbit purchase

Sidley

Google given permission to appeal class action lawsuit

Reuters

Google faces fresh privacy lawsuit over app tracking

BBC News

Gloucestershire Council staff leave after series of data breaches

IAPP

Global pandemic incites concerns about data-sharing overreach

Reuters

Germany preparing to launch Singapore-style coronavirus app

EURACTIV

German Federal Court tells Facebook to stop cross-platform data sharing

IAPP

GDPR’s interplay with the pharmacovigilance sector

IAPP

GDPR ushers in civil litigation claims across the EU

Pincent Masons

GDPR accountability principle integral to UK direct marketing code

Reuters

French court upholds €50 million Google data breach fine

Chronicle of Data Protection

French court rules against schools use of facial recognition

Future of Privacy Forum

FPF discuss privacy and pandemics

Infosecurity Magazine

FCA confirms data breach

EDPB

FAQ on Schrems II ruling

Chronicle of Data Protection

European DPAs’ different views on COVID-19 and data protection

European Commission

European Commission urges preparation before end of Brexit transition

European Commission

European Commission announce Data and Artificial Intelligence strategy

IAPP

Europe aims to take global lead with strategies on AI, data

EURACTIV

EU’s Thierry Breton defends COVID-19 mobile data acquisition

TechCrunch

EU to scrutinise Google-Fitbit deal over data competition concerns

EU Commission

EU roadmap towards lifting of containment measures

European Parliament

EU requires data protection guarantees before exchanging fingerprints

The Intercept_

EU Police planning network of live facial recognition databases

Privacy & Information Security Law Blog

EU Council releases ePrivacy progress report

EURACTIV

EU Commission considering options should ECJ invalidate privacy shield

IAPP

ePrivacy proposal critics: Legitimate interest provisions not legitimate

The Register

Entire travel itineraries stolen in EasyJet data breach

IAPP

Embedding data ethics into your ‘culture of privacy’

EDPS

EDPS: Monitoring spread of COVID-19

EDPS

EDPS Strategy 2020 to 2024

EDPS

EDPS releases opinion on European data strategy

EDPS

EDPS inquiry into 2019 European Parliament election activities closed

EDPS

EDPS discuss challenges and opportunities surrounding AI and Facial Recognition

EDPS

EDPS delivers its opinion on data protection for scientific research

Reuters

EDPB warns of privacy risks in Google, Fitbit merger

EDPB

EDPB release search engines right to be forgotten guidelines

EDPB

EDPB Plenary Session 18

EDPB

EDPB Plenary Session 17

EDPB

EDPB Chair issues statement about COVID-19 outbreak

IAPP

EC calls for harmonisation, addresses data transfers in GDPR review

Reuters

easyJet data breach affects 9m customers

Inside Privacy

Dutch supervisory authority to investigate connected cars

TechCrunch

Dutch public broadcaster data shows the value of contextual ads

WIRED

DuckDuckGo fighting Google over its dominance of user data

The Guardian

Draft government memo proposes de-anonymising COVID-19 app data

Irish DPC

DPC Report on the use of cookies and tracking technologies

IAPP

Do we need something similar to Incoterms for data transfers?

IAPP

Developing digitised solutions for customers? Here's what to think about

IAPP

Defining a 'new normal' for data privacy in the wake of COVID-19

Chronicle of Data Protection

Deadline Looming for California’s Data Broker Registration

11KBW Panopticon Blog

Dawson-Damer v Taylor Wessing LLP part 4

UK Government

Data Standards Authority publishes government data-sharing guidance

Digiday

Data Provenance set to become the transparency issue in 2020

EDPS

Data Protection requirements hand in hand with anti-money laundering

ICO

Data protection expectations on contact tracing app development

ICO

Data Protection Day 2020

WIRED

Data protection clash over Premier League’s player data

ICO

Data protection and coronavirus

Politico

Data breach at European Parliament exposes 1,200 officials details

Chronicle of Data Protection

Cybersecurity threats on the rise amid COVID-19 outbreak

Chronicle of Data Protection

Customer communications during the coronavirus

EU Council

Croatian presidency releases latest ePrivacy draft

EU Council

Croatian Presidency releases ePrivacy draft proposal

IAPP

COVID-19 response and data protection law in the EU and US

COVID-19 Round-up

COVID-19 privacy news (w/e 9th April)

COVID-19 Round-up

COVID-19 privacy news (w/e 7th May)

COVID-19 Round-up

COVID-19 privacy news (w/e 7th August)

COVID-19 Round-up

COVID-19 privacy news (w/e 5th June)

COVID-19 Round-up

COVID-19 privacy news (w/e 3rd July)

COVID-19 Round-up

COVID-19 privacy news (w/e 31st July)

COVID-19 Round-up

COVID-19 privacy news (w/e 29th May)

COVID-19 Round-up

COVID-19 privacy news (w/e 26th June)

COVID-19 Round-up

COVID-19 privacy news (w/e 24th July)

COVID-19 Round-up

COVID-19 privacy news (w/e 24th April)

COVID-19 Round-up

COVID-19 privacy news (w/e 22nd May)

COVID-19 Round-up

COVID-19 privacy news (w/e 1st May)

COVID-19 Round-up

COVID-19 privacy news (w/e 19th June)

COVID-19 Round-up

COVID-19 privacy news (w/e 17th July)

COVID-19 Round-up

COVID-19 privacy news (w/e 17th April)

COVID-19 Round-up

COVID-19 privacy news (w/e 15th May)

COVID-19 Round-up

COVID-19 privacy news (w/e 12th June)

COVID-19 Round-up

COVID-19 privacy news (w/e 10th July)

COVID-19 Round-up

COVID-19 privacy news

IAPP

COVID-19 Guidance and Resources

ICO

COVID-19 and data protection information for community groups

DLA Piper

Court of Appeal in Ireland defines concept of personal data

DLA Piper

Contact-tracing requirements for businesses

IAPP

Compare the Indian Personal Data Protection Bill 2019 v GDPR

Open Rights Group

CMA Market study into digital advertising

IAPP

CJEUs Schrems II decision scheduled for 16th July

Reuters

CJEU to deliver Facebook, Schrems privacy case ruling on Thursday

Reuters

CJEU strikes down EU-US data transfer tool in Schrems v Facebook case

Squire Patton Boggs

CJEU defines 'addresses' under Enforcement Directive

Reuters

Chinese facial recognition technology identifies mask-wearers

WIRED

Can we ban targeted advertising?

IAPP

Brussels Court of Appeal overrules first DPA fine to a private company

The Hill

Brazil fines Facebook R$6.6M over Cambridge Analytica

WIRED

Boost your online privacy with Mozilla’s VPN

ICO

Blog: Don’t get caught out when it comes to pupil photos

DLA Piper

Belgian DPA reveals 5-year plan

Privacy & Information Security Law Blog

Belgian DPA Releases Direct Marketing Recommendation

The Guardian

Babylon Health GP app data breach

Reuters

Avast to close down Jumpshot after data scandal

Reuters

Australian privacy regulator sues Facebook over alleged privacy breach

IAPP

Are IP addresses personal information?

Vice

Antivirus collecting and selling browsing data of millions

IAPP

Analysis of Cabinet of Japan's approved bill to amend APPI

IAPP

Analysing the second set of modifications to draft CCPA regulations

EFF

Amazon Ring passes personal data to third-parties

IAPP

Aggregated data provides a false sense of security

TechCrunch

Adtech industry breathes a sigh of relief as ICO pauses RTB investigation

Irish DPC

Accountability through codes of conduct and certification

11KBW Panopticon Blog

A review of the law involving Coronavirus

EDPS

A quick-guide to necessity and proportionality

IAPP

A lawyer’s guide to pseudonymisation and anonymisation

IAPP

7 predictions for the road ahead after 'Schrems II'

Ad Exchanger

5 adtech pros discuss how privacy can change the industry in 2020

Infosecurity Magazine

39 organisations hold personal data belonging to UK citizens

IAPP

3 reasons why Europe's connected vehicle guidelines matter

Open Rights Group

3 main political parties deny scale of personal data use

EDPB

2019 EDPB annual report

The Register

118 118 Money data breach

IAPP

11 drafting flaws to address in the upcoming GDPR review

GDPR Training | Certified and Bespoke Courses Available

Find out more

COVID-19: FLEXIBLE, LIVE ONLINE BCS & IAPP TRAINING NOW AVAILABLE - PLEASE CONTACT FOR DETAILS