ESG (Environmental, Social and Governance) criteria are non-financial factors used by socially-responsible investors to assess companies they are considering investing in. ESG is an increasingly popular metric. According to Bloomberg, Global ESG assets are expected to exceed $53 trillion by 2025, more than a third of the $140.5 trillion in projected total assets under management. [...]
Introduction On 4 June 2021, the European Commission adopted new Standard Contractual Clauses (EU SCCs) for the transfer of personal data from the European Economic Area (EEA) to third countries that are not deemed “adequate” by the European Commission. On 11 August 2021, the UK Information Commissioner's Office (ICO) published draft UK SCCs, formerly known as the International Data Transfer Agreement (IDTA), for UK companies to use [...]
The question of where to place, and how to structure, the privacy function is a crucial one for organisations striving for privacy excellence. The Data Protection Officer (DPO) and Chief Privacy Officer (CPO) are two key roles for any global organisation processing personal data at scale. While they have overlapping responsibilities, they are in [...]
The Covid-19 pandemic saw the rise of remote working. In light of this, an increasing number of organisations are also seeking to adopt monitoring tools in order to observe the productivity of employees. Under Article 4 of the General Data Protection Regulation (GPDR), behavioural characteristics of an individual constitutes as personal data. Therefore, the GDPR [...]
“You can't really know where you are going until you know where you have been.” (Maya Angelou) Every data-driven company should have a privacy framework in place. If your company hasn’t yet taken the time to orient itself to this new space, here are a few common reasons why now is the best time [...]
California voters pass Proposition 24, approving the California Privacy Rights and Enforcement Act On 3 November, California voters approved Proposition 24, otherwise known as the California Privacy Rights and Enforcement Act (CPRA). The new law comes into effect on 1 January 2023 and will significantly augment the privacy provisions under the 2018 California Consumer Privacy Act (CCPA). [...]
In June, Apple held its annual Worldwide Developers Conference (WWDC20) in which the company announced, among other news, two major updates to its privacy guidelines: App Store product pages will feature a new privacy information section to help users understand an application’s privacy practices, and Apps will be required to receive user permission to track [...]
In an interview with 'The Modern CIO' for Workato (Workato is the leading Enterprise Automation Platform, enabling businesses and IT to integrate their apps and automate business workflows), our CEO Dyann Heward-Mills highlighted the importance for organisations to take responsibility for data management in order to be able to operate successfully in this digital world [...]
On 25th May 2020, two months after the UK was put into lockdown due to the Covid-19 pandemic, an unarmed Black man, George Floyd, was murdered by the police in Minneapolis, USA. The death of George Floyd reignited the Black Lives Matter movement and sparked protests across the globe, bringing to light the continued problem [...]
When the General Data Protection Regulation (GDPR) first came into force in May 2018, it was widely anticipated that there would be a deluge of class action claims for infringements of data protection laws. The first reason for this anticipation is that the GDPR confers extensive rights on data subjects to make claims for data protection breaches. Under articles 78 – 80 inclusive, data subjects can bring claims against supervisory authorities, controllers and processors. They also have the option to be represented by a not-for-profit body to bring [...]
