Data Protection Act https://community.jisc.ac.uk/node/term/feed en Moving toward GDPR - online briefing 04.09.17 https://community.jisc.ac.uk/groups/janet-london/event/moving-toward-gdpr-online-briefing-040917 <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/groups/janet-london/event/moving-toward-gdpr-online-briefing-040917">Moving toward GDPR - online briefing 04.09.17</a></h3></div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/edward-pull">Edward Pull</a></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">12 July 2017 at 3:30pm</div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/jisc">JISC</a></div><div class="field-item odd"><a href="/products-and-services/training">training</a></div><div class="field-item even"><a href="/taxonomy/term/janet">Janet</a></div><div class="field-item odd"><a href="/taxonomy/term/janet-training">Janet training</a></div><div class="field-item even"><a href="/taxonomy/term/gdpr">GDPR</a></div><div class="field-item odd"><a href="/taxonomy/term/gdpr-training">GDPR training</a></div><div class="field-item even"><a href="/products-and-services/data-protection">data protection</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item even"><a href="/taxonomy/term/data-protection-directive">Data Protection Directive</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-regulation">Data Protection Regulation</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">What is the GDPR and what do I need to do? </div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/groups/janet-london/event/moving-toward-gdpr-online-briefing-040917" class="">Read more</a></div></div></div> Wed, 12 Jul 2017 14:30:41 +0000 Edward Pull 43897 at https://community.jisc.ac.uk Moving toward GDPR - online briefing 01.08.17 https://community.jisc.ac.uk/groups/janet-london/event/moving-toward-gdpr-online-briefing-010817 <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/groups/janet-london/event/moving-toward-gdpr-online-briefing-010817">Moving toward GDPR - online briefing 01.08.17</a></h3></div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/edward-pull">Edward Pull</a></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">12 July 2017 at 3:26pm</div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/jisc">JISC</a></div><div class="field-item odd"><a href="/products-and-services/training">training</a></div><div class="field-item even"><a href="/taxonomy/term/janet">Janet</a></div><div class="field-item odd"><a href="/taxonomy/term/janet-training">Janet training</a></div><div class="field-item even"><a href="/taxonomy/term/gdpr">GDPR</a></div><div class="field-item odd"><a href="/taxonomy/term/gdpr-training">GDPR training</a></div><div class="field-item even"><a href="/products-and-services/data-protection">data protection</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item even"><a href="/taxonomy/term/data-protection-regulation">Data Protection Regulation</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-directive">Data Protection Directive</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">What is the GDPR and what do I need to do? </div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/groups/janet-london/event/moving-toward-gdpr-online-briefing-010817" class="">Read more</a></div></div></div> Mon, 03 Jul 2017 09:20:44 +0000 Edward Pull 43834 at https://community.jisc.ac.uk IT Governance - Certified EU General Data Protection Regulation (GDPR) Practitioner 23.05.17 https://community.jisc.ac.uk/groups/janet-wales/event/it-governance-certified-eu-general-data-protection-regulation-gdpr-0 <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/groups/janet-wales/event/it-governance-certified-eu-general-data-protection-regulation-gdpr-0">IT Governance - Certified EU General Data Protection Regulation (GDPR) Practitioner 23.05.17</a></h3></div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/edward-pull">Edward Pull</a></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">18 May 2017 at 2:12pm</div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/jisc">JISC</a></div><div class="field-item odd"><a href="/products-and-services/training">training</a></div><div class="field-item even"><a href="/taxonomy/term/janet">Janet</a></div><div class="field-item odd"><a href="/taxonomy/term/janet-training">Janet training</a></div><div class="field-item even"><a href="/taxonomy/term/data-governance">Data Governance</a></div><div class="field-item odd"><a href="/taxonomy/term/governance">governance</a></div><div class="field-item even"><a href="/taxonomy/term/data">data</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item even"><a href="/products-and-services/data-protection">data protection</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-directive">Data Protection Directive</a></div><div class="field-item even"><a href="/taxonomy/term/data-protection-regulation">Data Protection Regulation</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"></div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/groups/janet-wales/event/it-governance-certified-eu-general-data-protection-regulation-gdpr-0" class="">Read more</a></div></div></div> Thu, 18 May 2017 13:12:14 +0000 Edward Pull 43600 at https://community.jisc.ac.uk IT Governance - Certified EU General Data Protection Regulation (GDPR) Foundation 22.05.17 https://community.jisc.ac.uk/groups/janet-wales/event/it-governance-certified-eu-general-data-protection-regulation-gdpr <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/groups/janet-wales/event/it-governance-certified-eu-general-data-protection-regulation-gdpr">IT Governance - Certified EU General Data Protection Regulation (GDPR) Foundation 22.05.17</a></h3></div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/edward-pull">Edward Pull</a></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">18 May 2017 at 2:05pm</div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/jisc">JISC</a></div><div class="field-item odd"><a href="/products-and-services/training">training</a></div><div class="field-item even"><a href="/taxonomy/term/janet">Janet</a></div><div class="field-item odd"><a href="/taxonomy/term/janet-training">Janet training</a></div><div class="field-item even"><a href="/taxonomy/term/data-governance">Data Governance</a></div><div class="field-item odd"><a href="/taxonomy/term/governance">governance</a></div><div class="field-item even"><a href="/taxonomy/term/data">data</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-regulation">Data Protection Regulation</a></div><div class="field-item even"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item odd"><a href="/products-and-services/data-protection">data protection</a></div><div class="field-item even"><a href="/taxonomy/term/data-protection-directive">Data Protection Directive</a></div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/groups/janet-wales/event/it-governance-certified-eu-general-data-protection-regulation-gdpr" class="">Read more</a></div></div></div> Thu, 18 May 2017 13:04:10 +0000 Edward Pull 43599 at https://community.jisc.ac.uk 2017 - DCMS Derogations under the GDPR https://community.jisc.ac.uk/library/consultations/2017-dcms-derogations-under-gdpr <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/library/consultations/2017-dcms-derogations-under-gdpr">2017 - DCMS Derogations under the GDPR</a></h3></div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-post-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">Tuesday, May 9, 2017 - 10:36</div></div></div><div class="field field-name-field-libtags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/library/tags/data-protection-regulation">Data Protection Regulation</a></div><div class="field-item odd"><a href="/library/tags/data-protection-act">Data Protection Act</a></div><div class="field-item even"><a href="/library/tags/research">research</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">This is Jisc's response to the DMCS call for views on Derogations under the General Data Protection Regulation (GDPR)</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/library/consultations/2017-dcms-derogations-under-gdpr" class="">Read more</a></div></div></div> Tue, 09 May 2017 09:36:13 +0000 Andrew Cormack 43577 at https://community.jisc.ac.uk Consent for Learning Analytics: Practical Guidelines https://community.jisc.ac.uk/blogs/regulatory-developments/article/consent-learning-analytics-practical-guidelines <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/consent-learning-analytics-practical-guidelines">Consent for Learning Analytics: Practical Guidelines</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">19 April 2017 at 9:41am</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/learning-analytics">Learning Analytics</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item even"><a href="/taxonomy/term/data-protection-regulation">Data Protection Regulation</a></div><div class="field-item odd"><a href="/taxonomy/term/gdprtopics">GDPRtopics</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">Recently I've been doing some work with Niall Sclater on how education organisations might inform students about the use of learning analytics, and when they might seek students' consent. The resulting blog post is at https://analytics.jiscinvolve.org/wp/2017/02/16/consent-for-learning-analytics-some-practical-guidance-for-institutions/ </div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/consent-learning-analytics-practical-guidelines" class="">Read more</a></div></div></div> Thu, 16 Feb 2017 11:11:23 +0000 Andrew Cormack 43247 at https://community.jisc.ac.uk Learning Analytics - an updated model https://community.jisc.ac.uk/blogs/regulatory-developments/article/learning-analytics-updated-model <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/learning-analytics-updated-model">Learning Analytics - an updated model</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">19 April 2017 at 9:44am</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/learning-analytics">Learning Analytics</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item even"><a href="/taxonomy/term/privacy">Privacy</a></div><div class="field-item odd"><a href="/taxonomy/term/gdprtopics">GDPRtopics</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">At Jisc's Learning Analytics Network meeting last month I presented an updated version of my suggested legal model for Learning Analytics.</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/learning-analytics-updated-model" class="">Read more</a></div></div></div> Thu, 08 Dec 2016 10:26:52 +0000 Andrew Cormack 42895 at https://community.jisc.ac.uk Data exports: update in 2017 https://community.jisc.ac.uk/blogs/regulatory-developments/article/data-exports-update-2017 <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/data-exports-update-2017">Data exports: update in 2017</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">29 July 2016 at 4:02pm</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item odd"><a href="/taxonomy/term/safe-harbor">Safe Harbor</a></div><div class="field-item even"><a href="/taxonomy/term/privacy-shield">Privacy Shield</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">The latest announcement from the Article 29 Working Party on the US-EU Privacy Shield also suggests that there shouldn't be any short-term surprises for those using the other justifications for exporting personal data to the USA.</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/data-exports-update-2017" class="">Read more</a></div></div></div> Fri, 29 Jul 2016 15:02:19 +0000 Andrew Cormack 42051 at https://community.jisc.ac.uk Wifi location data https://community.jisc.ac.uk/blogs/regulatory-developments/article/wifi-location-data <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/wifi-location-data">Wifi location data</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">4 May 2016 at 3:15pm</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/privacy">Privacy</a></div><div class="field-item odd"><a href="/taxonomy/term/eprivacy-directive">ePrivacy Directive</a></div><div class="field-item even"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item odd"><a href="/taxonomy/term/wifi">wifi</a></div><div class="field-item even"><a href="/taxonomy/term/location">location</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">More than a decade ago the e-Privacy Directive mentioned "location data" in the context of telecommunications services. At the time that was almost entirely about mobile phone locations - data processed by just a handful of network providers - but nowadays many more organisations are able to gather location data about wifi-enabled devices in range of their access points.</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/wifi-location-data" class="">Read more</a></div></div></div> Wed, 04 May 2016 14:14:05 +0000 Andrew Cormack 41437 at https://community.jisc.ac.uk Safe Harbor/Privacy Shield https://community.jisc.ac.uk/blogs/regulatory-developments/article/safe-harborprivacy-shield <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/safe-harborprivacy-shield">Safe Harbor/Privacy Shield</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">29 February 2016 at 2:40pm</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-regulation">Data Protection Regulation</a></div><div class="field-item even"><a href="/taxonomy/term/safe-harbor">Safe Harbor</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">The European Commission has now published draft texts that could be used to implement an EU/US Privacy Shield to replace the previous Safe Harbor agreement. It appears that the new scheme would only cover "commercial exchanges" of personal data between the EU and US so it is unlikely to be appropriate for export of personal data to US universities or non-profit organisations.</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/safe-harborprivacy-shield" class="">Read more</a></div></div></div> Mon, 29 Feb 2016 14:40:31 +0000 Andrew Cormack 41005 at https://community.jisc.ac.uk Safe Harbor: Advice Postponed https://community.jisc.ac.uk/blogs/regulatory-developments/article/safe-harbor-advice-postponed <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/safe-harbor-advice-postponed">Safe Harbor: Advice Postponed</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">12 February 2016 at 9:29am</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-regulation">Data Protection Regulation</a></div><div class="field-item even"><a href="/taxonomy/term/safe-harbor">Safe Harbor</a></div><div class="field-item odd"><a href="/taxonomy/term/cloud-computing">Cloud computing</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">The Article 29 Working Party of European data protection supervisors had hoped to make a full statement on the EU/US Safe Harbor agreement at the end of January. However this has now been postponed, probably until mid-April. The European Court of Justice declared last October that the original Safe Harbor did not guarantee adequate protection when personal data were transferred from Europe to the USA.</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/safe-harbor-advice-postponed" class="">Read more</a></div></div></div> Fri, 12 Feb 2016 09:01:41 +0000 Andrew Cormack 40860 at https://community.jisc.ac.uk ICO on Safe Harbor judgment https://community.jisc.ac.uk/blogs/regulatory-developments/article/ico-safe-harbor-judgment <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/ico-safe-harbor-judgment">ICO on Safe Harbor judgment</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">29 October 2015 at 4:13pm</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item odd"><a href="/taxonomy/term/safe-harbor">Safe Harbor</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">The Information Commissioner's Office has published a new article on how they are responding to the European Court's Safe Harbor judgment. The overall message is that data controllers should take stock and not panic. While noting that the judgment does remove some of the former legal certainty, the ICO is "certainly not rushing to use our enforcement powers".</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/ico-safe-harbor-judgment" class="">Read more</a></div></div></div> Thu, 29 Oct 2015 14:56:31 +0000 Andrew Cormack 39880 at https://community.jisc.ac.uk Article 29 Working Party on Safe Harbor https://community.jisc.ac.uk/blogs/regulatory-developments/article/article-29-working-party-safe-harbor <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/article-29-working-party-safe-harbor">Article 29 Working Party on Safe Harbor</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">19 October 2015 at 4:56pm</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-regulation">Data Protection Regulation</a></div><div class="field-item even"><a href="/taxonomy/term/safe-harbor">Safe Harbor</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">The Article 29 Working Party of European Data Protection supervisors has now published its response to the European Court's ruling that the US-EU Safe Harbor agreement can no longer be relied upon when exporting personal data from the European Economic Area.</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/article-29-working-party-safe-harbor" class="">Read more</a></div></div></div> Mon, 19 Oct 2015 14:20:23 +0000 Andrew Cormack 39849 at https://community.jisc.ac.uk Safe Harbor at the European Court https://community.jisc.ac.uk/blogs/regulatory-developments/article/safe-harbor-european-court <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/safe-harbor-european-court">Safe Harbor at the European Court</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">14 October 2015 at 1:45pm</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/data-protection-regulation">Data Protection Regulation</a></div><div class="field-item odd"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item even"><a href="/taxonomy/term/safe-harbor">Safe Harbor</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">The European Court's declaration today that the European Commission's fifteen year old decision on the US Safe Harbor scheme is no longer reliable is another recognition that Data Protection requires continuing assessment, rather than one-off decisions. European regulators have been recommending for years that neither data controllers nor companies to which they export data should rely on Safe Harbor certification alone. The U.K.</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/safe-harbor-european-court" class="">Read more</a></div></div></div> Tue, 06 Oct 2015 15:29:32 +0000 Andrew Cormack 39782 at https://community.jisc.ac.uk Disclosing personal data for criminal investigations https://community.jisc.ac.uk/blogs/regulatory-developments/article/disclosing-personal-data-criminal-investigations <div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h3><a href="/blogs/regulatory-developments/article/disclosing-personal-data-criminal-investigations">Disclosing personal data for criminal investigations</a></h3></div></div></div><div class="field field-name-changed-date field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even">27 August 2015 at 4:36pm</div></div></div><div class="field field-name-user-fullname field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/users/andrew-cormack">Andrew Cormack</a></div></div></div><div class="field field-name-field-tags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/taxonomy/term/data-protection-act">Data Protection Act</a></div><div class="field-item odd"><a href="/taxonomy/term/incident-response">incident response</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even">The Information Commissioner has published updated and extended guidance on the use of the Data Protection Act's "section 29" exemption, based on cases and wider experience. This exemption is often used to release personal information (such as computer or network logs) to the police or other authorities investigating crimes, so sections 33-52 in particular are worth reading as a refresher. The points I'm most often asked about are:</div></div></div><div class="field field-name-node-link field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><a href="/blogs/regulatory-developments/article/disclosing-personal-data-criminal-investigations" class="">Read more</a></div></div></div> Fri, 21 Aug 2015 13:35:04 +0000 Andrew Cormack 39581 at https://community.jisc.ac.uk