- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Neil Hodge2024-03-25T13:36:00
The U.K.’s data regulator published guidance setting out how it decides to issue penalties against companies and calculate fines.
Last week, the Information Commissioner’s Office (ICO) issued its updated data protection fining guidance to provide companies with greater transparency and clarity about how and why the regulator would administer penalties for a breach of the U.K. General Data Protection Regulation (GDPR) or Data Protection Act 2018.
The last time the ICO issued details about how it intended to rap companies for data protection and privacy breaches came in November 2018, six months after the European Union’s GDPR came into force.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec.
Register for free
Access one free, non-premium article each month.
Complimentary CPE webcasts, resources, and e-Books.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
TikTok and X are under investigation related to their respective compliance with the European Union’s Digital Services Act, while the first three companies probed under the Digital Markets Act include Apple, Alphabet, and Meta.
The U.K. Information Commissioner’s Office is seeking input from developers, users, and those interested in generative artificial intelligence to help inform policy and guidance regarding the technology.
Just because Alison Rose received a public apology from the U.K. Information Commissioner’s Office regarding the suggestion she might have violated the General Data Protection Regulation doesn’t mean NatWest could avoid sanction.
TikTok is suspending new features amid an inquiry by the European Commission into its compliance with the Digital Services Act, all while responding to a U.S. ban just signed into law.
The Czech Republic’s data protection authority issued a fine of 351 million Czech koruna (U.S. $15 million) against antivirus software vendor Avast for alleged violations of the General Data Protection Regulation.
Consolidated Nuclear Security agreed to pay $18.4 million to settle alleged False Claims Act violations regarding the submission of timecards for unworked hours to the National Nuclear Security Administration.
