The key role of governance in making business better

Earlier this month, HewardMills participated in the inaugural B Corp Festival in Oxford, a two-day event assembling the largest gathering of B Corps to date. With a theme of ‘Louder than Words’, it was a great opportunity to connect with businesses from numerous sectors, all driven by a common purpose to actively create a [...]

By |2024-09-27T11:11:16+01:0026th September, 2024|B Corp, DPO|

Why your clinical trials need a DPO: key data protection considerations for compliance

When starting a clinical trial, safeguarding patient privacy is one of many aspects of regulatory compliance to implement from the outset. With many other considerations to take care of, working closely with a Data Protection Officer (DPO) can make the job of complying with key privacy regulations a lot easier. In this three-part series, [...]

By |2024-09-27T14:51:07+01:0024th September, 2024|DPO, Life Sciences|

Saudi Arabia’s Personal Data Protection Law comes into force

Saudi Arabia’s Personal Data Protection Law (PDPL) came into effect in September, requiring companies operating in the Kingdom of Saudi Arabia (KSA) to ensure the stringent data protection laws are strictly complied with. Widely based on the EU’s GDPR, the PDPL is designed to safeguard personal information and regulate data handling practices, reflecting Saudi [...]

By |2024-09-27T11:05:32+01:0023rd September, 2024|DPO, Governments, Saudi Arabia|

Australia’s federal government introduces a ‘Privacy & Other Legislation’ Bill

On 12th September 2024, the Privacy and Other Legislation Amendment Bill (the Bill) was introduced in Australia’s House of Representatives, proposing changes to the existing federal Privacy Act 1998 (Privacy Act) and making it more relevant in the digital age. The Bill strives to advance privacy reforms in Australia, through provisions for children's online [...]

By |2024-09-27T11:02:46+01:0022nd September, 2024|Artificial Intelligence, DPO, Governments, Right to Privacy|

The impact of ‘International Treaty for AI’ on global data protection management

As governance around the use of artificial intelligence (AI) continues to evolve, regulators are keeping pace by demonstrating a commitment to work together on shaping a global framework. On September 5th the UK, US, and EU, along with Israel and Norway, signed the first international treaty aimed at addressing the potential risks associated with [...]

By |2024-09-27T10:52:10+01:0020th September, 2024|Artificial Intelligence, Data Breaches, DPO, Governments, News|

Why DPOs and privacy teams need to consider adequate cross-border data transfers mechanisms critical for data protection compliance 

The Dutch Data Protection Authority (DPA) has fined Uber an unprecedented €290 Million fine related to a breach of GDPR cross-border data transfer rules.  In a case that has somewhat divided opinion in the data protection and privacy space, the regulator ruled that transferring EU drivers' personal data to U.S. servers without adequate Standard [...]

By |2024-09-09T14:40:03+01:009th September, 2024|Data Breaches, DPO, Governments, News, Works council|

South Korean regulator fines AliExpress for breaches of data transfer rules

South Korea’s Personal Information Protection Commission (PIPC) has fined AliExpress for what it considered significant data protection breaches. The penalty, totalling 1.978 billion KRW (approximately £1.13 million) plus an administrative fine of 7.8 million KRW (£4,460), marks the first enforcement action by the PIPC for infringements in international data transfers.    The regulator particularly highlighted [...]

By |2024-08-30T12:00:17+01:0030th August, 2024|DPO, Governments, News, Works council|

The ICO takes action against the UK Labour party

The UK Labour Party has been reprimanded for not fulfilling its data protection duties following a historic cyberattack. More than 150 complaints were made to the Information Commissioner's Office (ICO) regarding mishandling of Subject Access Requests (SARs) for personal information.   The ICO’s investigation found that between November 2021 and November 2022, the Labour Party [...]

By |2024-09-03T11:08:49+01:0028th August, 2024|DPO, Governments, News, Works council|

Avoiding the risks of data breaches in using AI chatbots

The increasing use of AI chatbots to complete tasks in a much faster and efficient way is giving rise to data breach risks. According to the Dutch Data Protection Authority, recent cases of employees entering sensitive and personal data into AI chatbots exposed both individuals and organisations to significant privacy risks and urges stronger [...]

By |2024-09-03T11:11:10+01:0027th August, 2024|DPO, Governments, News, Works council|

Thailand’s data protection authority’s landmark fine highlights importance of appointing a DPO

In the first of its kind case, Thailand's Personal Data Protection Committee (PDPC) has levied penalties against a company following a complaint. A THB 7,000,000 (about USD 200,000) fine was issued in accordance with the Personal Data Protection Act (PDPA), sending a strong message to data processors and controllers operating in the region to [...]

By |2024-08-30T11:15:32+01:0026th August, 2024|DPO, Governments, News, Works council|
Go to Top