UKDPA 2018 says: 171 Re-identification of de-identified personal data (1) It is an offence for a person knowingly or recklessly to re-identify information that is de-identified personal data without the consent of the controller responsible for de-identifying the personal data. (2) For the purposes of this section and section 172— (a) personal data is “de-identified” … Continue reading Advertising cookies and the law
A non-exec directorship might (unfairly) be seen as a sinecure – a reward for a career’s accomplishments – combining a comfortable stipend with a light workload and the occasional decent lunch. Once upon a time this might well have had some truth to it, but the winds of change have long blown through the boardroom, … Continue reading Non-exec? Are you asking the right questions?
Who’d have thought an 18th century legal case would be relevant to 21st century database theft? We have a relatively recent law on ownership of databases, The Copyright and Rights in Databases Regulations 1997, another part of the infosec legal thicket. This law formed the basis of a successful claim for damages against a salesman … Continue reading You’ve got to love the English legal system