Enforced subject access requests now a criminal offence in UK
With effect from 10 March 2015, carrying out 'back-door' criminal record checks on potential employees by requiring them to make a subject access request (SAR) for information related to their criminal past has become a criminal offence. This will impact employers or service providers who regularly require individuals to make a SAR to the Disclosure and Barring Service (DBS) for information that they are otherwise not legally entitled to obtain through DBS checks.
New general data protection regulation threaten European health research
The medical industry across the EU has expressed concern that the wording of the new regulation will require specific consent to be obtained from each donor every time new research is carried out on data or tissue donated for medical research. Medical professionals stress the impact such onerous consent requirements could have on European health research and are campaigning to remove such administrative burdens.
Volkswagen rejects cloud computing
Car manufacturer Volkswagen has rejected the use of cloud computing after highlighting concerns around its security. Volkswagen has chosen in favour of internal hosting due to the stringent regulations in Germany and a desire to ensure security of its data. The car manufacturer produces data at every stage of the supply chain and uses this to underpin its strategy of connecting cars with technology.
Netherlands and US sign data protection agreement
On 9 March, the Netherlands' Data Protection Authority and the US Federal Trade Commission signed a memorandum of understanding "to enhance information sharing and enforcement cooperation on privacyrelated matters". This is a move towards greater consumer privacy and facilitates cross-border...