Latest biggest updates from ICO
This 1 year period ICO has published very beneficial documents that are very important for the Data protection of the subjects and related to other topics.
In this post will share chronologicaly the most important events month by month.
We have published guidance on the National Security Provisions in Part 3 of the DPA18 and updated the Guide to Intelligence Services Processing.
We have published new guidance on the national security exemption in Part 2 of the DPA18.
We have published an Updated BCR communication following the EU-UK Trade and Co-operation Agreement to the International transfers after the UK exit from the EU Implementation Period.
We have published the new Data Sharing Code of Practice, alongside a data sharing information hub with further resources and support.
In addition, we published detailed guidance on sharing personal data with law enforcement authorities, and detailed guidance on data sharing and reuse of data by competent authorities for non-law enforcement purposes.
We have published detailed guidance on criminal offence data.
We have published the Accountability Framework, which provides detailed guidance on complying with the accountability principle.
We have published detailed guidance on codes of conduct and certification.
The Danish Data Protection Agency has adopted Standard Contractual Clauses (SCCs) which have been approved by the European Data Protection Board (EDPB). We have updated our detailed guidance on contracts and liabilities between controllers and processors to reflect this.
We have published detailed guidance on special category data and updated the Guide page on special category data. We have also published a template appropriate policy document. This is required by many of the DPA 2018 schedule 1 conditions for processing.
In addition, we have published a template Part 3 appropriate policy document. We have updated the conditions for sensitive processing and principles pages in the Guide to Law Enforcement Processing to provide further guidance on the Part 3 appropriate policy document.
We have published guidance on manifestly unfounded and excessive requests under the Guide to Law Enforcement Processing.
We have updated our position on how to calculate the time limit for responding to requests (in relation to Individual rights) following a determination made in a Court of Justice of the European Union (CJEU) case which has been adopted by the European Data Protection Board (EDPB). We have also added guidance on the meaning of ‘manifestly unfounded or excessive’. The following pages have been updated:
- Right of access;
- Right to rectification;
- Right to erasure;
- Right to restrict processing;
- Right to data portability; and
- Right to object.
The transition year is up and the Children’s code came fully into force on 2 September. It’s
Special category data is personal data that needs more protection because it is sensitive.In order
Why US companies must comply with the GDPR The GDPR applies to companies outside the EU becaus