Case Law, Luxembourg, Facebook “Fan Page” case, administrator held to be data controller and jurisdictional issues clarified – Sara Mansoori

11 07 2018

In an important decision the CJEU has found that the administrator of a Facebook ‘fan page’ was a joint data controller with Facebook Ireland and Facebook Inc, and that a German data protection supervisory authority is competent to assess the lawfulness of data processing carried out by Facebook Germany, applying German data protection law. Read the rest of this entry »





The European Parliament’s Hearing on Cambridge Analytica and Facebook #1: ‘and in the blue corner…’ – Pascal Crowe

30 06 2018

2018 has been an annus horribilis for tech in general, and Facebook in particular. The scandal surrounding Cambridge Analytica, Facebook and the UK referendum about whether or not to remain in the European Union, has resulted in a tsunami of political fallout on both sides of the Atlantic. Read the rest of this entry »





Case Comment: TLU v Home Office, Unnamed family members entitled to damages for Home Office immigration data leak – Iain Wilson

24 06 2018

In The Secretary of State for the Home Department & Anor v TLU & Anor [2018] EWCA Civ 2217 the Court of Appeal, was asked to review one aspect of Mr Justice Mitting’s decision in TLT & Ors v The Secretary of State for the Home Department & Anor [2016] EWHC 2217 (QB)Read the rest of this entry »





Case Law: TLU v Home Office, Misuse of Private Information and Data Protection Appeals dismissed, Durant further explained – Lorna Skinner

20 06 2018

In a decision handed down on 15 June 2018 (TLU and others v Secretary of State for the Home Department [2018] EWCA Civ 2217) the Court of Appeal dismissed the Home Office’s appeal against findings of liability for misuse of private information and for breach of the Data Protection Act 1998 (“the 1998 Act”). Read the rest of this entry »





GDPR and journalism: the new regime – Greg Callus

5 06 2018

David Cameron was often derided as an “essay crisis” Prime Minister – the Oxford PPE undergraduate model of relying on good general knowledge and trusting your ability to pick up the details only as peril looms large. Read the rest of this entry »





Data Protection: The Right to a Second Chance

2 06 2018

The new right to be forgotten (now known as “the right to erasure”) was enshrined in law last week, but it will pass a lot of people by. Many will not know – or care – about their online profile, but for others the right is vital to their future. Read the rest of this entry »





Right to erasure (right to be forgotten) under the GDPR: the danger of “rewriting history” or the individual’s chance to leave the past behind – Ketevan Kukava

31 05 2018

In the internet age, when vast amount of information can be stored indefinitely and can be easily retrieved by means of a mouse click, controlling one’s personal data seems a particularly difficult task to do. Read the rest of this entry »