Author Archives: Dave

Register to Vote

 

You have until 22nd May to register to vote in the General Election

Register to vote at https://www.gov.uk/register-to-vote  … » Read more …

Fines, Enforcement and good faith

We then considered enforcement trends. The total number of fines is going up; the maximum under the DPA is £½ m, the maximum under the GDPR will be €20m or 4% of global turnover. Today the ICO can fine under two laws, the Data Protection Act and the Privacy and Electronic Communication Regulation (PECR),  which regulate Data Controllers and Processors and direct mailing houses respectively. The ICO have taken more interest in the DPA since they gained fining powers. This note looks at the record in court, the change in enforcement powers, and notes that the preponderance of fines have been levied due toinadequate technical protection.  … » Read more …

The coming Data Protection Officer, needed, expert & independent

A presentation was made about the to be established Data Protection Officer, claiming to be informed by the EU’s advice on what the law means. We looked at whether a DPO is needed, the expertise and skills required, and the requirement for independence.  … » Read more …

An overview of issues with the GDPR

At the BCS legal day,  a presentation was made entitled “Key Issues” which they started with a quote from Jan Albrecht MEP (the Rapporteur),

“[The] result is something that makes (as we intended from the beginning) everybody equally unhappy, but at the same time is a huge step forward for all sides involved.

Jan Albrecht MEP”

It is hoped that business opportunity will be created by a harmonisation of regulation across Europe with a goal of improved privacy for its citizens. The harmonisation is constrained by the Restrictions Article, which excludes areas of law from the Regulation and creates nationally authored variances.   … » Read more …

BCS Legal Day

I attended the BCS ISSG Legal day where the priority was the coming General Data Protection Regulation. I believe that the day was held under Chatham House rules, which means that comments cannot be attributed. I prefer to work on more open terms; it allows me to attribute credit to those who have informed me or changed my mind but the notes have been anonymised. The running order has been changed to make the story better and to conform to my preferred priority order, of principles, rights, obligations and enforcement.  The day consisted of two presentations, entitled “Key Issues”, “the Data Protection Officer” and one on trends in enforcement.  I have written these notes over the last week, and backdated them to the day of occurrence. These are a bit less polemic than my recent articles here, but for various reasons I have been reminded that that’s how they once were; I hope these articles are useful to my more technical readers. Some of the discussions and issues may interest those that follow me for politics.  … » Read more …

The Digital Economy Act (again)

The Digital Economy Act 2010 showed the long term goal of the entertainment industry, they want to criminalise file sharing. At the time, individual acts of copyright infringement were civil acts and the copyright owners had to pursue them through the courts, one at a time. This is expensive, slow, uncertain and most importantly expensive, compared with the cover price of a CD or DVD. The DE Act did that, it also sought to automate the justice system and in order to do that it weakened innocent until proven guilty, by prescribing defences and also placed a charge on going to court to argue not guilty. It really was a shit piece of legislation. However, the Law stated that the costs of surveillance and discovery had to be shared by the copyright owners and the internet service providers. The Courts struck down this part of the Law, (see here … for more)   … » Read more …

Corbyn on Brexit & Parliament

What Jeremy Corbyn wrote to members and said about Labour’s i.e the PLP’s position on Brexit,  … » Read more …

Brexit goes to Parliament

On returning from LP conference in September last year, I predicted that the left/right split had been added to by arguments over Brexit and Immigration. The last couple of days has shown this clearly. It starts from May’s declaration that the UK will be seeking to leave the single market and the customs union, the so-called “Hard Brexit”. This is because they wrongly think that this is the only way to implement more restrictive border controls and for reasons I can’t really understand hate the European Court of Justice. The UK Supreme Court has since ruled that only Parliament can agree to leave the EU and implement Article 50’s intention to quit. This article looks at the politics of the situation, especially as it applies to the Parliamentary Labour Party and argues that Labour’s policy of defining red-lines, and asking for a second mandate if the terms of exit are unacceptable are fair, democratic and desirable.  … » Read more …

Why you should be bothered about the Snoopers Charter

Late last year, the UK Parliament passed the Investigatory Powers Act 2016. This law builds on the Regulation of Investigatory Powers Acts and the Data Retention Laws. This law allows the Government to store all our electronic communications traffic, read the content and meta data and co-opt the product and service vendors to help them. I describe this in more detail below.

The Law was written in the aftermath of Court of Justice of the European Union’s (CJEU) ruling in the Schrems vs. Facebook case that the EU’s Data Retention Directive and hence the member state implementations were in contradiction to the EU’s human rights law, the Charter of Fundamental Rights. Parliament had considered aspects of these proposals twice before under the two previous administrations and rejected them.

This article looks at the new Law, criticises it on Human Rights grounds in that it jeopardises the right to privacy, the right to organise, the right to a fair trial and rights to free speech and on IT Security grounds in that the new regulation of encryption products jeopardises access to electronic trust and privacy. It also examines the likely impact of the recent CJEU ruling on the legality of its predecessor law, and in passing, likely conflicts with last year’s passage of the General Data Protection Regulation (GDPR) by the European Union.   … » Read more …

Oi!, You! No snooping on my emails and chat!

Earlier this week, the Court of Justice of the European Union delivered its judgement on the legality of the UK & Swedish data retention and surveillance laws. They confirmed their ruling from 2015 that general monitoring is illegal, that retention must be specific and is only allowed to combat serious crimes, that access to surveillance records must be authorised by independent authorities and that EU data subjects must be have access to legal remediation if their rights to privacy are breached. The Guardian report on it here, the Independent here ,the Register here and even  the Daily Mash comments here. The UK’s Investigatory Powers Act also gives the government the right to mandate backdoors in UK operated communications products; these powers may also fall foul of the prohibition on general monitoring and the need for independent review. While the ruling is specific to the UK’s DRIPA law, which has now been replaced by the Investigatory Powers Act, it poses a clear challenge to the legality of the new Law.  … » Read more …

A note on the coming GDPR

In a blog at my employer’s site I looked at how to become compliant with the EU’s General Data Protection Regulation. Regulations are the Law in all the member states, and members of the European Economic Area. The article looks at the issues of consent, the new data subject rights, privacy by design, the meaning of adequate protection and new public accountability via the duty to report breaches and to appoint a professional data protection officer.  … » Read more …

Renewing Party Democracy

The LP NEC is having an away day to discuss reforming its rules and internal democracy, mainly in the light of the massive increase in membership to more than half a million members.  Here’s my manifesto for a member led party, I hope to supplement it with some ideas on the use of IT to aid in policy development and expressing the membership voice, but in terms of rules reform  … » Read more …

Labour & Article 50

In my report back from Labour Party Conference, I predicted that the fault lines caused by the Brexit Referendum would become a potential fatal debate for the Labour Party. Today the Independent reported on a speech by John McDonnell, in which he argued that Labour would not oppose an Article 50 bill and would use moral pressure to ensure that the Brexit terms negotiated were acceptable to Labour. Jolyen Maugham argues in the New Statesman that promising not to oppose Article 50, or not to amend it disarms the PLP, it will have no leverage on the Tories who are still putting the interests of their party before that of the country.  … » Read more …